event-storming
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): No security issues detected. The skill is instructional and focuses on architectural documentation.
- [Indirect Prompt Injection] (SAFE): While the skill ingests local project files (e.g.,
define/고객분석.md), the data is used to generate structural PlantUML diagrams. No exploitable capabilities such as system command execution or network exfiltration were found in conjunction with this ingestion surface. - [Data Exposure & Exfiltration] (SAFE): File access is restricted to local project documentation. No sensitive credentials or system-level files are targeted.
- [Unverifiable Dependencies & Remote Code Execution] (SAFE): No external packages or remote scripts are downloaded or executed.
Audit Metadata