agile-metrics
Pass
Audited by Gen Agent Trust Hub on May 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues were detected. The skill instructions focus entirely on data extraction and reporting for agile workflows.- [INDIRECT_PROMPT_INJECTION]: The skill analyzes data from external sources like issue trackers and pull requests, which could theoretically contain malicious instructions. However, the risk is negligible as the skill only outputs text and lacks execution capabilities (e.g., shell access, network requests).
- Ingestion points: Consults issues, status reports, commits, and PRs in the SKILL.md file.
- Boundary markers: Absent. No specific instructions are provided to distinguish data from instructions during analysis.
- Capability inventory: No subprocess calls, file writes, or network operations detected across scripts.
- Sanitization: Absent. No specific sanitization or validation of the input data is performed.
Audit Metadata