flowchart-creator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- Prompt Injection (LOW): The skill is vulnerable to indirect prompt injection (Category 8) as it processes untrusted user input to generate both file content and filenames without sanitization.
- Ingestion points: User-provided process names and descriptions are used as variables in
SKILL.md. - Boundary markers: Absent. There are no instructions to use delimiters or ignore embedded commands in the user input.
- Capability inventory: The skill possesses file-writing capabilities as per the instruction to write output to
[process]-flowchart.html. - Sanitization: Absent. No logic is provided to escape HTML special characters or sanitize file paths for the generated filename.
Audit Metadata