acceptance
Pass
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill is designed to process Product Backlog Item (PBI) content and user stories, which presents a surface for indirect prompt injection where instructions embedded in the data could influence the agent's behavior.
- Ingestion points: The workflow involves reading and verifying acceptance criteria from PBIs or story files.
- Boundary markers: No specific delimiters or safety instructions are defined to separate the untrusted input data from the skill's instructions.
- Capability inventory: The skill utilizes a task creation tool (TaskCreate) and reads project-related documentation files.
- Sanitization: There is no explicit sanitization or validation of the input data described in the skill.
- [NO_CODE]: This skill consists entirely of markdown-based process instructions and does not contain any executable scripts, binaries, or external code dependencies.
Audit Metadata