innovate
Pass
Audited by Gen Agent Trust Hub on May 3, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits an attack surface for indirect prompt injection via the processing of untrusted project data.
- Ingestion points: Reads CLAUDE.md, README, configuration files, git history, and issues/TODOs (SKILL.md).
- Boundary markers: Absent. No instructions are provided to ignore embedded commands or instructions in analyzed files.
- Capability inventory: The skill identifies opportunities and outlines implementation steps, which influences subsequent agent actions like file writing or code execution.
- Sanitization: Absent. There is no validation or escaping of ingested text.
- [NO_CODE]: The skill contains only natural language instructions and no executable scripts or binaries.
Audit Metadata