blueprint-addons-sitemap
Pass
Audited by Gen Agent Trust Hub on Mar 23, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it processes untrusted PRD documents to generate output.
- Ingestion points: Reads .blueprint/prd-*.md files from the local filesystem (SKILL.md).
- Boundary markers: There are no explicit instructions or delimiters used to separate user-provided data from agent instructions.
- Capability inventory: The skill has permissions to read from and write to the local project workspace.
- Sanitization: No validation or filtering of the content read from the external PRD files is described.
Audit Metadata