Skills
skills/involvex/aetheris/brainstorming/Gen Agent Trust Hub

brainstorming

Pass

Audited by Gen Agent Trust Hub on Mar 26, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it processes untrusted data from the local environment.
  • Ingestion points: Reads project files, documentation, and recent commit history (SKILL.md).
  • Boundary markers: Absent. No instructions are provided to the agent to distinguish between its own instructions and content found in the project files.
  • Capability inventory: Reading local files and git history, writing files to the filesystem (docs/plans/), and executing git commits.
  • Sanitization: Absent. The skill does not specify any validation or filtering of the ingested project data.
  • [COMMAND_EXECUTION]: The skill requires the agent to execute shell commands for version control operations.
  • Specifically, it instructs the agent to commit validated design documents to git after the design process is complete.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 26, 2026, 04:43 PM