story-splitting
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill contains no evidence of malicious instructions, obfuscated code, or unauthorized data access. Its behavior is consistent with its stated purpose of assisting in agile development processes.
- [PROMPT_INJECTION]: Analysis of the attack surface for indirect prompt injection reveals a low-risk profile despite the lack of explicit delimiters for user input.
- Ingestion points: User stories and feature descriptions provided during interaction or via the
Readtool. - Boundary markers: None explicitly implemented in the prompt instructions to separate user content from system guidance.
- Capability inventory: Limited to
ReadandAskUserQuestion, providing no pathway for command execution, file system modification, or persistence. - Sanitization: The skill relies on default model behavior without additional input filtering or validation.
Audit Metadata