agent-development
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill acts as an agent generation engine that incorporates user input into system prompts for other agents.
- Ingestion points: The placeholder [YOUR DESCRIPTION] in examples/agent-creation-prompt.md and project context (CLAUDE.md) mentioned in references/agent-creation-system-prompt.md.
- Boundary markers: The prompt template uses double quotes to delimit user-provided content.
- Capability inventory: The resulting agents are designed to use filesystem and search tools like Read, Write, Grep, and Glob.
- Sanitization: The skill relies on human oversight and the scripts/validate-agent.sh script to identify and correct issues in the generated configurations.
Audit Metadata