wiki-architect
Pass
Audited by Gen Agent Trust Hub on Feb 23, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes standard git commands, specifically 'git remote get-url origin' and 'git rev-parse --abbrev-ref HEAD', to resolve the repository's source URL and current branch name for generating documentation citations.
- [PROMPT_INJECTION]: The skill identifies an indirect prompt injection surface as it ingests data from untrusted sources within the repository to generate its documentation prompts. Ingestion points: repository file hierarchy and README.md; Boundary markers: no explicit markers or instructions to ignore embedded commands are defined; Capability inventory: repository metadata retrieval and directory traversal; Sanitization: no content validation or sanitization of ingested file data is performed before interpolation into output prompts.
Audit Metadata