project-session-management
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No instructions to bypass safety filters or override agent constraints were found. The instructional content is restricted to project tracking workflows.
- [Command Execution] (SAFE): The provided resume.sh script performs read-only operations using grep and git log on local files. It does not evaluate content as executable code or accept external arguments.
- [Data Exfiltration] (SAFE): No network operations, hardcoded credentials, or sensitive system file access patterns were detected.
- [External Downloads] (SAFE): The skill is self-contained and does not download external packages or execute remote scripts.
- [Indirect Prompt Injection] (SAFE): The skill ingests data from SESSION.md and IMPLEMENTATION_PHASES.md to determine the agent's next steps. While this represents an attack surface, it is fundamental to the skill's purpose and the risk is considered low as it is limited to user-provided project files.
Audit Metadata