llms-txt
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION] (LOW): Indirect Prompt Injection vulnerability surface detected. The skill processes external data to generate documentation which could be manipulated by an attacker.
- Ingestion points: The skill reads project files including READMEs, documentation directories (docs/, wiki/), API references, and source code entry points (SKILL.md).
- Boundary markers: No explicit delimiters or instructions (e.g., 'ignore embedded instructions') are used when the agent processes the contents of these files.
- Capability inventory: The skill uses file system tools (Glob, Grep, Read) and has the capability to write the generated output back to the project root or a specified path.
- Sanitization: There is no evidence of sanitization or escaping of the ingested file content before it is interpolated into the generation instructions.
Audit Metadata