Skills
skills/junhyunny/skills/tdd-plan/Gen Agent Trust Hub

tdd-plan

Pass

Audited by Gen Agent Trust Hub on Apr 17, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill ingests data from external sources (TrackerBoot API or user input) which could contain adversarial instructions.
  • Ingestion points: Story descriptions and tasks fetched via the tracker-boot-mcp-tb_get_story tool or provided as raw text in the SKILL.md entry point.
  • Boundary markers: The skill includes a manual verification step where the agent must pause and ask the user 'Does this look correct?' before proceeding to planning.
  • Capability inventory: The agent has the ability to read project source files and configuration for convention detection, write session files to a dedicated directory, and modify the .gitignore file.
  • Sanitization: There are no programmatic filters or specific prompt isolation techniques used to prevent the agent from obeying instructions embedded within the fetched story content.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 17, 2026, 01:29 PM