jpralph-orchestrator
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): No malicious behaviors or patterns were identified.
- [Indirect Prompt Injection] (SAFE): The skill processes untrusted local data from 'prd.json' and 'tasks/' to determine workflow state. Mandatory Evidence Chain: 1. Ingestion points: prd.json, tasks/*.md (SKILL.md). 2. Boundary markers: Absent. 3. Capability inventory: Local file inspection (cat, jq) and git commands (SKILL.md). 4. Sanitization: Absent. This is considered SAFE as the skill only tracks progress and provides guidance.
- [Command Execution] (SAFE): The skill provides standard git and file-reading commands for user assistance, which are non-malicious and do not involve privilege escalation.
Audit Metadata