diataxis
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- Indirect Prompt Injection (SAFE): The skill acts as a text processor for documentation, creating an ingestion surface for untrusted data. 1. Ingestion points: User-provided text processed via the 'classify', 'audit', and 'restructure' modes in SKILL.md. 2. Boundary markers: Absent; instructions do not provide specific delimiters for user-supplied content. 3. Capability inventory: No subprocess calls, executable code, network access, or file-write operations are present in the skill files. 4. Sanitization: No sanitization logic or boundary enforcement identified. The risk is negligible as the skill lacks any dangerous capabilities.
- No Code (SAFE): The skill consists entirely of Markdown instructional content and contains no scripts or executable logic.
Audit Metadata