meta-assimilate
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it reads untrusted configuration files and integrates them into its operational parameters.
- Ingestion points: Project configuration files located at .claude/agents and .claude/commands.
- Boundary markers: The instructions do not define delimiters to isolate the external instructions from the agent's core instructions.
- Capability inventory: The skill uses file manipulation tools like Write and Edit to modify user-scoped configuration.
- Sanitization: There is no evidence of validation or sanitization for the ingested configuration content.
Audit Metadata