create-readme
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references template content from external GitHub repositories, including official Microsoft samples (Azure-Samples). These are trusted sources for development templates.
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface as it processes data from the local workspace and remote URLs. 1. Ingestion points: Project files and remote Markdown templates. 2. Boundary markers: No delimiters are specified to isolate untrusted content. 3. Capability inventory: Write access to create the README.md file. 4. Sanitization: No explicit input sanitization is performed. This vulnerability surface is associated with the skill's primary purpose.
Audit Metadata