glossary-generator
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill mandates the generation and execution of a local Python script to perform alphabetical sorting and file assembly tasks. This is an intended design for token efficiency.
- Evidence: SKILL.md Step 6 provides a Python script template and instructs the agent to execute it using the Bash tool.
- [PROMPT_INJECTION]: The skill processes untrusted user data from various markdown files, creating a surface for indirect prompt injection attacks where malicious instructions could influence the agent's behavior.
- Ingestion points: The skill reads
docs/learning-graph/02-concept-list-v1.md,docs/course-description.md, and any files matchingdocs/**/*.md. - Boundary markers: Absent. The skill instructions direct the agent to paste the full content of these files directly into a sub-agent prompt without delimiters or escaping.
- Capability inventory: The agent has access to the Bash tool and file system write operations.
- Sanitization: No sanitization or validation is performed on the input text before processing.
Audit Metadata