agents-md-pro
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Indirect Prompt Injection (LOW): The skill ingests data from untrusted files within the repository (e.g., package.json, source files) to generate documentation. Ingestion points: package.json, README.md, configuration files, and source code files (workflows.md). Boundary markers: Absent. Capability inventory: File system read and write. Sanitization: Absent.
- SAFE (SAFE): No malicious behaviors or security vulnerabilities were detected. The skill operates locally within the project directory to read metadata and write documentation.
Audit Metadata