generate-tasks
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it processes untrusted user requirements or PRDs to generate task lists.
- Ingestion points: User-provided feature requests, task descriptions, or external documentation files are used as the primary input for analysis.
- Boundary markers: The skill lacks explicit delimiters or instructions to ignore embedded commands within the input data, although it does include a confirmation step.
- Capability inventory: The agent has the capability to write markdown files to the
/tasks/directory. - Sanitization: No specific input sanitization or validation logic is present to filter out malicious instructions from the source documents.
Audit Metadata