Skills
skills/knoopx/pi/daily-standup/Gen Agent Trust Hub

daily-standup

Pass

Audited by Gen Agent Trust Hub on Feb 27, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: Executes the jj log command to retrieve commit history and the ls command to enumerate local project and session directories. These operations are core to the skill's purpose of activity aggregation.
  • [PROMPT_INJECTION]: Contains an attack surface for indirect prompt injection by processing untrusted data from commit descriptions and session logs.
  • Ingestion points: Reads session data from .jsonl files in ~/.pi/agent/sessions and commit messages via the jj CLI tool.
  • Boundary markers: Absent. The aggregated content is formatted into Markdown without delimiters or instructions to the agent to ignore nested commands.
  • Capability inventory: Limited to local file system traversal (ls, cd), file reading (open), and version control metadata access (jj log). No network or administrative capabilities are present.
  • Sanitization: The script performs basic string manipulation (trimming, line splitting) but does not sanitize or escape the content for downstream LLM processing.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 27, 2026, 07:26 PM