Skills
skills/montagao/skills/todo/Gen Agent Trust Hub

todo

Pass

Audited by Gen Agent Trust Hub on Mar 23, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill processes untrusted user input to populate task fields in the Plane API.
  • Ingestion points: User messages are ingested to define task titles and descriptions.
  • Boundary markers: No explicit delimiters or instructions to ignore embedded commands are present in the processing flow.
  • Capability inventory: The skill calls the plane-api tool for task creation and coordinates with the interview skill, both of which handle data derived from user input.
  • Sanitization: There is no evidence of sanitization or validation of user-provided content before it is processed by tools.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 23, 2026, 04:19 AM