ambiguity-detector
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [NO_CODE]: The skill consists exclusively of markdown documentation and a JSON template. It does not include any Python, Node.js, or shell scripts.
- [SAFE]: No malicious instructions, prompt injections, or data exfiltration patterns were identified. The skill's behavior is restricted to text analysis and report generation within the agent's context.
- [INDIRECT_PROMPT_INJECTION]: The skill processes user-provided requirements documents which constitute untrusted data. 1. Ingestion points: User-supplied text input for requirements analysis. 2. Boundary markers: No explicit delimiters are used to wrap the input. 3. Capability inventory: No code execution, network access, or file-write capabilities are available to this skill. 4. Sanitization: No sanitization is applied to input data. Despite being a surface for injection, the lack of capabilities renders this risk negligible.
Audit Metadata