analyze-agent-overlap
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface as it instructs the agent to read and summarize content from various potentially untrusted files across local provider directories.\n
- Ingestion points: The skill explicitly scans and extracts data from files in .github/, .claude/, .codex/, and .config/opencode/.\n
- Boundary markers: There are no instructions to use delimiters or to disregard instructions contained within the analyzed files.\n
- Capability inventory: The skill is purely instructional for text processing; it contains no subprocess calls, network operations, or file-writing scripts.\n
- Sanitization: No sanitization or validation of the content of the analyzed files is performed.\n- [NO_CODE]: This skill contains only markdown instructions and metadata. It does not include any Python or Node.js scripts, or other executable binaries, which significantly reduces the risk of direct execution-based attacks.
Audit Metadata