trace-requirements
Pass
Audited by Gen Agent Trust Hub on Feb 23, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection due to its processing of untrusted external content.\n
- Ingestion points: The skill ingests data from user-defined paths including 'task_file', 'implementation_path', and 'test_path', as well as files listed in the task specification's 'Implementation Record'.\n
- Boundary markers: The skill lacks explicit delimiters or instructions to the agent to ignore any potential commands embedded within the code snippets or task descriptions being analyzed.\n
- Capability inventory: The skill possesses the capability to read local files, perform string analysis, and write markdown report files to the project's assessment directory.\n
- Sanitization: There is no evidence of content sanitization or validation of the extracted code snippets before they are included in the generated traceability reports.
Audit Metadata