workflow
Pass
Audited by Gen Agent Trust Hub on Feb 22, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [Prompt Injection] (SAFE): No attempts to override safety filters or bypass instructions were detected. The instructions provide a standard operational framework.- [Data Exposure] (SAFE): No access to sensitive files or exfiltration attempts. The skill only references a local '/specs/' directory for documentation purposes.- [Remote Code Execution] (SAFE): No external scripts, package installations, or remote downloads are present. The skill consists entirely of markdown instructions.- [Indirect Prompt Injection] (LOW): The skill instructs the agent to read the codebase, which is a common surface for indirect injection. However, as this is the primary purpose of a development workflow skill and no specific vulnerabilities are introduced, the risk is minimal and inherent to the task.
Audit Metadata