project-session-management
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes
IMPLEMENTATION_PHASES.mdandSESSION.md, which are external data sources that could contain malicious instructions designed to influence agent behavior.\n - Ingestion points: The skill reads planning documents (IMPLEMENTATION_PHASES.md) and state files (SESSION.md) to manage project context.\n
- Boundary markers: There are no explicit instructions or delimiters provided to the agent to ignore potentially malicious embedded text within these documents.\n
- Capability inventory: The skill directs the agent to perform file system writes and execute git commit commands based on interpreted data.\n
- Sanitization: No content validation or sanitization is performed on the ingested project files prior to execution.
Audit Metadata