diataxis
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill provides documentation templates and a guide for the Diátaxis framework. All content is educational or structural in nature.
- [PROMPT_INJECTION]: The indexing script
scripts/generate_index.pypresents an indirect prompt injection surface by reading Markdown file titles to generate a navigation index. - Ingestion points: Markdown files in the
.docs/directory (processed byscripts/generate_index.py). - Boundary markers: Absent; the script extracts the first line starting with '# ' without further validation.
- Capability inventory: Writes the generated index to the local file system (
.docs/index.md). - Sanitization: Absent; extracted titles are interpolated directly into Markdown links.
- [SAFE]: Step-by-step examples in
references/examples.mdinclude shell commands (e.g.,pip install django) for user reference. These are formatted as static documentation and are not executed by the skill's automated logic.
Audit Metadata