Skills
skills/c0ntr0lledcha0s/claude-code-plugin-automations/planning-sprints/Gen Agent Trust Hub

planning-sprints

Pass

Audited by Gen Agent Trust Hub on Mar 9, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection due to its reliance on external data sources that could contain malicious instructions.
  • Ingestion points: GitHub issue data retrieved via the gh CLI and local project files such as backlog.md.
  • Boundary markers: There are no explicit delimiters or instructions to ignore instructions embedded within the ingested data.
  • Capability inventory: The skill has access to the Bash tool, file writing capabilities, and the ability to execute local Python scripts.
  • Sanitization: No input validation or sanitization of the retrieved data is mentioned before it is processed by the agent or scripts.
  • [COMMAND_EXECUTION]: The skill uses the Bash tool to execute system-level commands, specifically for running the GitHub CLI (gh) and a set of local Python scripts provided with the skill (calculate-velocity.py, capacity-planner.py, prioritize-backlog.py, sprint-burndown.py). These operations are necessary for the skill's management and automation features.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 9, 2026, 09:58 AM