Skills
skills/adrianhdezm/atlassian-bridge/confluence/Gen Agent Trust Hub

confluence

Pass

Audited by Gen Agent Trust Hub on Apr 23, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the @ai-foundry/atlassian-bridge package, which is a community-maintained project and not an official Atlassian tool.
  • [COMMAND_EXECUTION]: The skill relies on executing the atl CLI to interact with the Atlassian API for reading and writing data.
  • [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection.
  • Ingestion points: Untrusted content is retrieved from Confluence pages via the get and search commands in SKILL.md.
  • Boundary markers: No explicit delimiters or instructions are used to separate retrieved data from agent instructions.
  • Capability inventory: The skill allows creating, updating, and deleting Confluence pages as described in SKILL.md.
  • Sanitization: There is no evidence of sanitization or validation of the data retrieved from external Confluence pages before it is processed by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 23, 2026, 08:41 AM