generate-tasks
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- PROMPT_INJECTION (LOW): Vulnerable to indirect prompt injection through untrusted data ingestion.
- Ingestion points: The skill reads the content of the user-supplied
<prd-file>for analysis and task generation. - Boundary markers: There are no explicit boundary markers or instructions to the agent to treat the file content strictly as data rather than instructions.
- Capability inventory: The skill possesses the capability to read files and write/update files on the local filesystem.
- Sanitization: No sanitization, escaping, or validation of the PRD file content is performed before the agent processes it.
Audit Metadata