readme-standards
Pass
Audited by Gen Agent Trust Hub on Apr 14, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is designed to analyze and process existing project documentation and source code to generate or update README files, which introduces a surface for indirect prompt injection attacks. \n
- Ingestion points: The skill relies on 'Read', 'Grep', and 'Glob' tools to ingest project content as part of the README generation and compliance checking process. \n
- Boundary markers: There are no explicit instructions or delimiters defined in the templates to differentiate between legitimate project data and potential malicious instructions embedded within the source files. \n
- Capability inventory: The agent is granted access to 'Bash', 'Write', and 'Edit' tools, which could be exploited if it were to obey instructions found in untrusted project files. \n
- Sanitization: No sanitization or validation mechanisms are specified for the content processed from external project files. \n- [SAFE]: The templates provided are industry-standard and promote secure practices, such as using environment variables for secrets. All external tools mentioned, like 'cookiecutter', and package registries are well-known and trusted in the software development ecosystem.
Audit Metadata