drafting
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes user-supplied text regarding writing progress and saves diagnostics to local files, creating a surface for indirect prompt injection.
- Ingestion points: Processes user conversational input to generate status reports and tracking files such as '{project}-drafting-{date}.md'.
- Boundary markers: Lacks explicit delimiters or 'ignore' instructions when interpolating user data into output files.
- Capability inventory: Performs file-write operations to local project files like 'context/output-config.md' and '.drafting-output.md'.
- Sanitization: No evidence of input filtering or escaping before data persistence.
Audit Metadata