Skills
skills/frankxai/arcanea/V3 Swarm Coordination/Gen Agent Trust Hub

V3 Swarm Coordination

Pass

Audited by Gen Agent Trust Hub on Feb 28, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill orchestrates tasks using a Task() abstraction and references npm scripts (e.g., npm run v3:phase1:security) for executing implementation phases.
  • [EXTERNAL_DOWNLOADS]: The skill interacts with GitHub's official API to create milestones and issues, which is a well-known service used for the skill's coordination purpose.
  • [PROMPT_INJECTION]: An indirect prompt injection surface exists as the skill processes external data from GitHub issues. 1. Ingestion points: GitHub issue titles and labels are processed in GitHubCoordination. 2. Boundary markers: No explicit delimiters or instructions to ignore embedded commands are present. 3. Capability inventory: The skill can execute subprocesses via Task() and manage GitHub resources. 4. Sanitization: No sanitization or validation of the ingested GitHub data is shown in the coordination logic.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 28, 2026, 10:51 AM