tasks-feature-implementation
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): The skill instructions do not contain any prompt injection, obfuscation, or unauthorized data exfiltration patterns. The use of 'IMPORTANT' and 'CRITICAL' keywords is limited to functional workflow instructions.
- [Indirect Prompt Injection] (SAFE): The skill possesses a surface for indirect prompt injection as it is designed to ingest and process external requirements and codebase content. However, this is an inherent aspect of its functional purpose as a code implementation tool.
- Ingestion points: Processes user-provided requirements and codebase files identified via 'Grep' and 'Read' tools.
- Boundary markers: Not explicitly defined in the skill markdown; relies on the agent's internal reasoning.
- Capability inventory: Includes powerful tools such as 'Bash', 'Write', and 'Edit' for performing file system operations.
- Sanitization: No specific sanitization or escaping logic is defined within the skill's instructional text.
Audit Metadata