yy-handoff
Pass
Audited by Gen Agent Trust Hub on Apr 20, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill focuses on structured documentation management within the local project environment. It reads project-related files to generate a summary for task continuity.
- [PROMPT_INJECTION]: An indirect prompt injection surface is present because the skill processes content from local project files into the handoff.md document. * Ingestion points: Reads AGENTS.md, spec.md, tasks.md, checklist.md, and handoff.md as defined in the skill instructions. * Boundary markers: None explicitly defined in the instructions to separate or ignore instructions found within the source files. * Capability inventory: Performs file-write operations to create or update the handoff.md file based on ingested data. * Sanitization: No specific sanitization or filtering of the ingested content is mentioned.
Audit Metadata