testing
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill reads task-related data from the local file system, which creates a surface for indirect prompt injection. This is a functional requirement for the skill's purpose. ● Ingestion points: The skill reads content from .plans//testing/NNN-task.md. ● Boundary markers: No specific delimiters are used to separate task content from agent instructions. ● Capability inventory: The skill has the ability to modify project files using the Edit tool. ● Sanitization: No explicit validation or filtering of the ingested task file content is performed.
Audit Metadata