project-starter
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill utilizes the Context7 MCP tool to fetch documentation and metadata for software libraries and facilitates the installation of third-party dependencies from public registries (NPM, PyPI, etc.) during the project bootstrap phase.
- [COMMAND_EXECUTION]: During the Phase 6 bootstrap, the skill generates plans to create directory structures and configuration files, and proposes running setup commands using package managers like npm, pnpm, or yarn.
- [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection through user input. Ingestion points: User answers to questions gathered via the questionnaire in references/question-bank.md. Boundary markers: Absent in the bootstrap generation phase. Capability inventory: File creation and command execution (SKILL.md). Sanitization: No explicit validation or escaping of user input is mentioned before it is used to populate configuration templates and documents.
Audit Metadata