update-task-board
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWPROMPT_INJECTION
Full Analysis
- Indirect Prompt Injection (LOW): The skill is designed to ingest and process data from external, potentially untrusted sources (MIGRATION_LOG.md, DEBUG_LOG.md, and GIT_LOG.md) which may contain attacker-controlled content like commit messages or debug logs.
- Ingestion points: Specifically reads from .claude/MIGRATION_LOG.md, .claude/DEBUG_LOG.md, and .claude/GIT_LOG.md.
- Boundary markers: No boundary markers or 'ignore' instructions are defined for the reading of these log files.
- Capability inventory: The skill is restricted to file system read operations and the modification of .claude/TASK_BOARD.md. It does not possess network access or arbitrary code execution capabilities.
- Sanitization: There is no evidence of sanitization or validation of the content extracted from the logs before it is used to update the task board.
Audit Metadata