hap-api-doc-updater
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface because it reads and processes documentation files which could be manipulated by an attacker to include hidden instructions.
- Ingestion points: The workflow involves reading existing documentation files such as openapi.yaml, description.md, and YAML definitions in the paths/ and schemas/ directories.
- Boundary markers: The skill does not define specific delimiters or instructions to help the agent distinguish documentation content from its operational instructions.
- Capability inventory: The agent has the capability to search, read, create, and modify project files including YAML, Markdown, and HTML.
- Sanitization: There is no evidence of sanitization or validation of the content read from the documentation files before it is processed by the agent.
Audit Metadata