requirement-comparison-reporter
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection due to its processing of untrusted external content.\n
- Ingestion points: The skill reads the contents of both 'Old requirement document' and 'New requirement document' and performs searches within code comments for requirement references.\n
- Boundary markers: The instructions do not define any boundary markers or special delimiters to isolate requirement content, nor do they instruct the agent to ignore instructions embedded within the processed text.\n
- Capability inventory: The skill has the capability to read files from the local filesystem using the
scripts/analyze_code_impact.pyutility and is tasked with generating complex modification plans in Markdown format.\n - Sanitization: No sanitization, validation, or filtering is performed on the data extracted from requirement documents or code comments before it is used to influence the agent's analysis and output generation.
Audit Metadata