skill-creator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- PROMPT_INJECTION (LOW): The skill processes frontmatter from external skill files to generate manifests and perform linting, creating an indirect injection surface.\n- Ingestion points:
generate_manifest.py,skill_lint.py, andquick_validate.pyread frontmatter from SKILL.md files.\n- Boundary markers: Absent. Content is interpolated directly into manifest files and linting logs.\n- Capability inventory:subprocess.runfor running local linting tasks and file writes for generating manifests and zipping skills.\n- Sanitization: Usesyaml.safe_loadand enforces character length limits inquick_validate.py.\n- COMMAND_EXECUTION (SAFE):skill_lint.pyexecutes local Python scripts usingsubprocess.runin a controlled, non-dynamic manner.\n- DATA_EXFILTRATION (SAFE): No unauthorized file access or network communication patterns were identified.
Audit Metadata