repo-wiki
Pass
Audited by Gen Agent Trust Hub on Apr 18, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface because it processes untrusted data to perform file system modifications.
- Ingestion points: Source code, configuration files, tests, and existing documentation as defined in
SKILL.mdandreferences/update-policy.md. - Boundary markers: The instructions do not define delimiters or provide warnings to ignore instructions embedded in the analyzed code.
- Capability inventory: The skill is empowered to read repository content and manage (create, update, delete) files within the
.repo-wiki/directory as described inSKILL.md. - Sanitization: There is no evidence of validation or sanitization of the repository content before it is used to generate documentation.
Audit Metadata