prd-to-issues
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill processes user-provided PRD files, which represents a potential surface for indirect prompt injection. However, the skill's capabilities are limited to reading and writing local files as requested by the user, with no network access or code execution paths.
- Ingestion points: Reads user-specified PRD files and explores the local codebase (Step 1 and 2 in SKILL.md).
- Boundary markers: No explicit delimiters or instructions to ignore embedded commands within the PRD are present.
- Capability inventory: File read and write operations on the local file system.
- Sanitization: None identified; the agent processes the PRD content directly to generate issue templates.
Audit Metadata