task-generator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- Prompt Injection (LOW): The skill has an attack surface for Indirect Prompt Injection (Category 8).
- Ingestion points: The skill ingests untrusted data from specs, plans, or requirements provided by the user in Phase 1.
- Boundary markers: There are no explicit delimiters or instructions to ignore embedded commands within the input specifications.
- Capability inventory: The skill performs file-write operations to the
/tasks/directory to save and update task lists. - Sanitization: The skill lacks sanitization of input data before using it to derive feature names or task descriptions, which could allow an attacker to inject malicious instructions into the generated documentation.
Audit Metadata