Skills
skills/glennguilloux/context-engineering-kit/load-issues/Gen Agent Trust Hub

load-issues

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [Prompt Injection] (LOW): The skill is susceptible to indirect prompt injection via external GitHub data.
  • Ingestion points: Content is ingested from GitHub issue titles and bodies via gh issue list and gh issue view in SKILL.md.
  • Boundary markers: Absent; the issue content is directly interpolated into markdown files without delimiters or warnings to ignore embedded instructions.
  • Capability inventory: The agent has permissions for Bash(gh issue:*), Bash(mkdir:*), and Write operations.
  • Sanitization: No evidence of sanitization or escaping of external content before it is written to the local filesystem, allowing potential malicious instructions to be persisted in the workspace.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:46 PM