implement
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to execute common development and linting tools including
bundle exec rubocop,npm run prettier,npm run tsc, andrake graphql:schema:dump. It also references local project binaries such asbin/tapiocaandbin/packwerk. These commands are contextually appropriate for the stated purpose of software implementation and code verification. - [PROMPT_INJECTION]: The skill processes external data from task definition files (e.g.,
@projects/.../tasks/*.md), which constitutes an indirect prompt injection surface. Ingestion points: Reads requirements and instructions from markdown files in the projects directory and searches the codebase for context. Boundary markers: None identified to separate task content from system instructions. Capability inventory: Ability to modify/create files and execute local shell commands. Sanitization: No explicit sanitization or validation of the task file content is described before processing.
Audit Metadata