feature-docs
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONNO_CODE
Full Analysis
- Indirect Prompt Injection (LOW): The skill processes untrusted project data and templates, creating a surface where malicious instructions in code comments could manipulate the documentation process or the agent's actions. \n
- Ingestion points: Local source code files and documentation templates (docs/templates/). \n
- Boundary markers: No specific delimiters or instructions to ignore embedded commands are defined for the input data. \n
- Capability inventory: The skill is granted access to Bash, Write, Edit, Read, Grep, and Glob tools. \n
- Sanitization: No explicit sanitization of input data is specified. \n- Command Execution (SAFE): The skill requests the Bash tool for file analysis; however, no dangerous shell commands or scripts are included in the instructions. \n- No Code (SAFE): No external scripts or binaries are provided with the skill.
Audit Metadata