readme-generator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [No Code Detected] (SAFE): The skill consists entirely of a markdown file with YAML frontmatter. No scripts, binaries, or executable code blocks are present in the provided file.
- [Indirect Prompt Injection] (SAFE): The skill is designed to process and generate README documentation, which is a surface for untrusted data ingestion. However, there is no evidence of insecure handling.
- Ingestion points: Project content accessed via the Read tool.
- Boundary markers: None specified in the skill configuration.
- Capability inventory: Authorization for Bash, Write, Edit, and Grep tools is listed, but no logic uses them maliciously.
- Sanitization: Relying on the base agent's default safety guardrails as no custom sanitization is defined.
Audit Metadata