parallel-workflows
Pass
Audited by Gen Agent Trust Hub on Feb 22, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- COMMAND_EXECUTION (SAFE): The skill util i ze s the Bash tool to execute git worktree and merge command s. These operation s are restricted to the local repository and are appropriate for the skill's purpose.
- EXTERNAL_DOWNLOADS (LOW): Reference documentation include s pn pm install, which fetch e s package s from external registrie s. This is a standard but noteworthy external dependency step.
- PROMPT_INJECTION (LOW): Data from Plans.md is used to determine execution flow, presen t ing an indirect prom pt injection surface. 1. Ingestion point s: Plans.md via Read/Grep. 2. Boundary marker s: Absent. 3. Capabil i ty inventory: Bash (git, mk dir, pn pm). 4. Sanitization: A slugify function is implemente d to sanitize input before it is used in shell command s.
Audit Metadata