handoff
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill establishes an indirect prompt injection surface.
- Ingestion points: Reads from HANDOFF.md (SKILL.md).
- Boundary markers: Lacks delimiters or instructions to ignore commands within the handoff file.
- Capability inventory: Performs file read and write operations.
- Sanitization: No content validation is performed on ingested data.
Audit Metadata