gws-workflow-standup-report
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were detected. The skill provides documentation for a read-only command within a vendor-specific CLI tool ('gws').
- [NO_CODE]: This skill consists entirely of documentation and metadata for an external CLI tool. It does not contain any executable scripts or configuration files that would introduce runtime risks.
- [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection as it ingests untrusted data from meeting titles and task descriptions (SKILL.md). No boundary markers or sanitization logic are defined in the documentation. However, the skill's capabilities are limited to read-only command execution, providing no path for privilege escalation or data exfiltration.
Audit Metadata