import-organizer
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill p r o c e s s e s un trus t e d s ource code from the us e r's work s p ace, c re at in g a surface for in d ire c t p r om p t in je c t io n.\n
- In g e s t io n p oin ts: The skill re ad s lo c al file con t e n t to id e n t ify im p ort statem en ts us in g the
Re adtool as d e s c rib e d inSKILL.m d.\n - Boun d ary m ark er s: The skill lac k s d e lim it er s or s p e c ific in s t r uc t io n s to ig n ore m alic io us d ire c t iv e s that c oul d b e em b e d d e d wit h in the s ource code or com m e n ts.\n
- Cap ab il it y in v e n t ory: The skill us e s
Re ad,Ed it, an dGre ptool s, whic h allow the ag e n t to m od ify the file sy s t e m b as e d on the d at a it has p r o c e s s e d.\n - San it iz at io n: No san it iz at io n, es c ap in g, or v alid at io n of the in g e s t e d code con t e n t is p e rform e d b e fore the ag e n t org an iz e s the im p ort s.
Audit Metadata