Skills
skills/borghei/claude-skills/self-improving-agent/Gen Agent Trust Hub

self-improving-agent

Pass

Audited by Gen Agent Trust Hub on Apr 3, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill implements an autonomous self-improvement loop that creates a surface for Indirect Prompt Injection.
  • Ingestion points: Feedback data is ingested from external logs (JSON/JSONL) and memory files via scripts/feedback_analyzer.py and scripts/rule_manager.py, as well as the manual review workflow described in SKILL.md.
  • Boundary markers: No boundary markers, delimiters, or instructions to ignore embedded prompts are defined for the processed feedback data.
  • Capability inventory: The skill directs the agent to update CLAUDE.md and .claude/rules/, which are high-authority configuration files that determine the agent's behavior in future sessions.
  • Sanitization: The skill lacks sanitization, validation, or escaping of textual content in feedback logs before it is promoted to persistent behavioral rules.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 3, 2026, 11:12 AM