team-sync
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- Indirect Prompt Injection (LOW): The skill processes untrusted data from the local environment to generate agendas. Ingestion points: Workflow step 2 involves gathering project data (PBIs, blockers) from external files using Read and Grep. Boundary markers: The agenda template lacks explicit delimiters or instructions to the agent to ignore commands embedded within the retrieved data. Capability inventory: The skill possesses Write and TodoWrite tools, allowing it to modify files based on processed content. Sanitization: No sanitization or validation of the retrieved data is performed before interpolation.
- Data Exposure & Exfiltration (SAFE): No sensitive file access (e.g., SSH keys, credentials) or unauthorized network communication was detected.
- Remote Code Execution (SAFE): The skill does not download or execute remote scripts and has no external package dependencies.
- Prompt Injection (SAFE): No direct instructions to bypass safety filters or override agent behavior were found in the skill text.
Audit Metadata