document-factory
Pass
Audited by Gen Agent Trust Hub on Apr 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues detected. The skill is designed for document generation using markdown templates and follows best practices by using restricted tool access for reading and writing files.
- [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection as it ingests user-supplied content to generate documents. The risk is assessed as safe because the output is non-executable markdown and the tools are used within their intended scope.
- Ingestion points: User-provided inputs for context, problem, and proposal fields as described in SKILL.md.
- Boundary markers: No explicit delimiters or instructions are used to distinguish user data from the template structure.
- Capability inventory: The skill utilizes the Write tool to create and modify documents on the filesystem.
- Sanitization: No sanitization or validation of user-provided data is performed before it is written to files.
Audit Metadata