file-todos
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: Indirect Prompt Injection surface identified.
- Ingestion points: Markdown files located in the todos/ directory (SKILL.md).
- Boundary markers: No explicit delimiters or ignore instructions are used when reading or processing file content.
- Capability inventory: The skill utilizes shell commands like ls, grep, mv, and cp for file system management and awk/sort for ID calculation.
- Sanitization: No sanitization or validation of the markdown file content is performed before processing or triage.
- [COMMAND_EXECUTION]: The skill provides standard shell command templates for organizing, searching, and triaging task files. These utilities (ls, grep, mv, cp, awk, sort, tail) are used appropriately for the skill's management purpose and do not pose a direct security threat.
Audit Metadata