writing-skills
Warn
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- COMMAND_EXECUTION (MEDIUM): The script
render-graphs.jsexecutes system commands to render diagrams. * Evidence: Line 79 usesexecSyncto run thedotbinary. * Evidence: Line 110 usesexecSyncto runwhich dot. * Risk: Interaction with system binaries outside the agent's restricted environment. - PROMPT_INJECTION (MEDIUM): Documentation details methods to ensure compliance and prevent agent rationalization using authority and scarcity. * Evidence:
persuasion-principles.mdrecommends using 'YOU MUST' and 'No exceptions'. * Evidence:CLAUDE_MD_TESTING.mduses emphatic blocks like '<important_info_about_skills>' to force skill usage and discourage independent reasoning. * Risk: These instructions are designed to override an agent's safety protocols and judgment by creating non-negotiable compliance paths.
Audit Metadata