readme-generator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONDATA_EXFILTRATION
Full Analysis
- [PROMPT_INJECTION] (LOW): The skill processes untrusted repository files to generate documentation, creating a surface for indirect prompt injection.
- Ingestion points: Project files, directory structures, and dependency metadata extracted by the skill as described in README.md.
- Boundary markers: Absent; no delimiters or instructions to ignore instructions within analyzed files are mentioned in the documentation.
- Capability inventory: Local file system read access, execution of internal Python scripts (
collect-site-metrics.py,validate-readme.py), and file write access toREADME.md. - Sanitization: Absent; the documentation does not describe any sanitization or validation of the project data before it is processed by the AI.
- [DATA_EXFILTRATION] (LOW): The skill communicates with non-whitelisted domains
img.shields.ioandbadgen.netto retrieve project badges as detailed in references/badges.md.
Audit Metadata