scrum
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [General] (SAFE): Analysis of the skill body and metadata reveals no malicious behavior. The content is strictly informational regarding Scrum roles, ceremonies, and artifacts.
- [Indirect Prompt Injection] (LOW): The skill is designed to ingest and process external content (User Stories, Backlogs). This presents a surface for indirect prompt injection if the source data is untrusted.
- Ingestion points: Processing of User Stories and Backlog items via tools.
- Boundary markers: Not explicitly defined in templates.
- Capability inventory: Access to Bash, Read, Write, Edit, Glob, and Grep tools.
- Sanitization: None implemented in the provided markdown templates.
Audit Metadata