scan-feature-docs
Pass
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted data from the local filesystem which could contain malicious instructions designed to influence agent behavior.
- Ingestion points: Multiple documentation files including
docs/**/*.md,README.md, andproject-config.jsonare read into the context for documentation mapping. - Boundary markers: There are no explicit delimiters or instructions provided to differentiate between the agent's instructions and the documentation content being scanned.
- Capability inventory: The agent possesses the capability to write to the local filesystem, specifically creating report files in
plans/reports/and updating reference files indocs/project-reference/. - Sanitization: No sanitization, escaping, or validation logic is specified for the documentation content before it is processed by the agent or written back to the project files.
Audit Metadata