Skills
NYC
skills/duc01226/easyplatform/prioritize/Gen Agent Trust Hub

prioritize

Fail

Audited by Gen Agent Trust Hub on Feb 16, 2026

Risk Level: HIGHPROMPT_INJECTION
Full Analysis
  • [Indirect Prompt Injection] (HIGH): The skill possesses a significant attack surface by combining the ingestion of untrusted data with file-modification capabilities.
  • Ingestion points: Processes external Product Backlog Items (PBIs) from the team-artifacts/pbis/ directory using the Read tool.
  • Boundary markers: There are no defined delimiters or instructions provided to the agent to disregard instructions potentially embedded within the PBI content.
  • Capability inventory: The skill is granted Write, Edit, and TodoWrite tools, allowing it to modify the filesystem and create tasks based on the data it processes.
  • Sanitization: No sanitization, validation, or escaping of the external content is performed before the agent uses it to make decisions or write updates.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Feb 16, 2026, 03:24 AM