generate-docs
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: Indirect prompt injection surface identified. Ingestion points: The skill reads project files, git history, and directory structures during the assessment phase (SKILL.md, Step 1). Boundary markers: The provided templates do not use delimiters or explicit instructions to isolate codebase content from the agent's logic. Capability inventory: The skill can write documentation files to the local filesystem and spawn 'doc-explorer' subagents using the Task tool. Sanitization: No sanitization or filtering is applied to the content extracted from the codebase before it is processed into templates.
Audit Metadata