standup
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFENO_CODE
Full Analysis
- Indirect Prompt Injection Surface: The skill functions by aggregating data from external platforms like version control and task trackers. This process is a common surface for indirect prompt injection where instructions could be embedded in the ingested data.
- Ingestion points: The skill pulls data from connected tools such as source control, project trackers, and chat logs as described in SKILL.md.
- Boundary markers: There are no specific delimiters or instructions provided to the agent to distinguish between its own logic and the data being summarized.
- Capability inventory: The skill is limited to information retrieval and text formatting; it does not possess capabilities for system-level changes or remote code execution.
- Sanitization: No explicit filtering or sanitization logic is present in the skill's instructions.
Audit Metadata