Skills
skills/florianbruniaux/claude-code-ultimate-guide/talk-pipeline/Gen Agent Trust Hub

talk-pipeline

Pass

Audited by Gen Agent Trust Hub on Mar 1, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: Indirect Prompt Injection Surface. The skill is designed to process untrusted external data which could theoretically contain instructions intended to override agent behavior.
  • Ingestion points: Input parameters source_path (markdown/transcript files) and repo_path (git repositories) allow external data to enter the agent context via the Read tool.
  • Boundary markers: The orchestration logic does not define explicit delimiters or 'ignore embedded instructions' warnings for the data being processed.
  • Capability inventory: The orchestrator and its referenced sub-skills utilize Read, Write, AskUserQuestion, and Task tools, providing a broad capability set for processing and generating files.
  • Sanitization: There is no evidence of content sanitization or validation performed on the source material before it is passed to downstream analysis stages.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 1, 2026, 01:07 AM