Skills
skills/alexei-led/claude-code-config/brainstorming-ideas/Gen Agent Trust Hub

brainstorming-ideas

Pass

Audited by Gen Agent Trust Hub on Apr 11, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection (Category 8) because it retrieves and processes content from external websites and the local codebase which could contain malicious instructions.
  • Ingestion points: Untrusted data enters the context through the WebFetch tool when retrieving research citations (Phase 4b) and through Read, Grep, and Glob tools during codebase exploration (Step 3).
  • Boundary markers: The instructions do not implement boundary markers or specific prompts to disregard embedded instructions within the ingested data.
  • Capability inventory: The agent has the ability to modify the filesystem (Write), execute repository operations (Bash(git *)), and spawn subagents (Task).
  • Sanitization: There is no evidence of sanitization or validation of the retrieved content before it is processed by the AI.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 11, 2026, 07:07 AM