senior-solution-architect
Pass
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill workflow instructs the agent to perform directory listing using
ls -Rand framework detection usinggrep. These are standard, low-privilege discovery commands necessary for architectural analysis. - [PROMPT_INJECTION]: The skill contains an indirect prompt injection surface. 1. Ingestion points: codebase structure and file contents (e.g.,
package.json) vialsandgrep. 2. Boundary markers: None present. 3. Capability inventory: local file discovery, documentation generation, and Mermaid diagram creation; no network access or execution tools. 4. Sanitization: No sanitization of ingested file content. - [SAFE]: No evidence of data exfiltration, hardcoded credentials, obfuscation, or persistence mechanisms was found in the provided skill files. The behavior is consistent with the stated purpose of a solutions architect assistant.
Audit Metadata