Skills
skills/akillness/oh-my-skills/sprint-retrospective/Gen Agent Trust Hub

sprint-retrospective

Pass

Audited by Gen Agent Trust Hub on Apr 19, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: Potential indirect prompt injection vulnerability. The skill is designed to ingest and summarize external sprint data.\n
  • Ingestion points: Untrusted data enters the agent context via user-provided intake fields (e.g., ticket summaries, incident summaries) in SKILL.md.\n
  • Boundary markers: Absent. No delimiters or instructions are provided to the model to ignore potential commands hidden within the ingested data.\n
  • Capability inventory: The skill uses Bash, Read, Write, Edit, Glob, and Grep as defined in the allowed-tools section of SKILL.md.\n
  • Sanitization: Absent. The instructions do not include any steps for escaping or validating the external content before processing.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 19, 2026, 02:13 AM