documentation-specialist
Warn
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: MEDIUMPROMPT_INJECTION
Full Analysis
- [Prompt Injection] (MEDIUM): The skill is susceptible to Indirect Prompt Injection (Category 8).
- Ingestion points: The skill reads from project documentation (docs/**/*.md) and source code files (e.g., server/api/).
- Boundary markers: None are present to distinguish between instructions and data within the files being processed.
- Capability inventory: The skill can read project files and modify or create Markdown files in the docs/ directory.
- Sanitization: There is no evidence of sanitization or instruction-filtering for the content extracted from external files before documentation generation.
Audit Metadata