toc-builder
Pass
Audited by Gen Agent Trust Hub on Apr 25, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill operates entirely as a set of logical instructions for text generation and structured analysis. It does not perform any sensitive operations.
- [INDIRECT_PROMPT_INJECTION]: The skill processes user-provided inputs regarding programme visions and contexts. While this constitutes an ingestion surface for untrusted data, the skill lacks any capabilities (such as code execution or network access) that could be exploited via injection. The risk is negligible.
- Ingestion points: User-provided inputs for programme vision, target population, and context (SKILL.md).
- Boundary markers: Not explicitly defined for user inputs.
- Capability inventory: None. The skill only produces markdown text and Mermaid diagrams.
- Sanitization: None required for the purely text-based output.
Audit Metadata