requirements-red-team
Pass
Audited by Gen Agent Trust Hub on Apr 16, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security risks were identified. The skill operates exclusively on project documentation within a scoped directory and does not perform network operations or access sensitive system resources.\n- [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection due to its ingestion of external documentation, which is used to influence agent writing actions.\n
- Ingestion points: Content is read from
docs/requirements/brd.md,docs/requirements/srs.md,docs/requirements/decisions.md, anddocs/requirements/open-questions.md.\n - Boundary markers: There are no explicit delimiters or instructions to ignore embedded prompts within the requirements documents.\n
- Capability inventory: The skill possesses the capability to modify and redraft markdown files within the
docs/requirements/directory.\n - Sanitization: No input sanitization or validation of the requirements content is performed prior to processing.
Audit Metadata