brain
Pass
Audited by Gen Agent Trust Hub on Apr 7, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface by ingesting content from external sources.
- Ingestion points: Data is ingested from the graph-brain knowledge base and the codebase via tools such as mcp__graph-brain__get-knowledge and direct codebase reads.
- Boundary markers: There are no explicit markers or instructions used to separate external data from system instructions.
- Capability inventory: The skill utilizes graph-brain querying tools and codebase reading capabilities.
- Sanitization: The skill does not implement sanitization or validation of the retrieved content before it is processed by the agent.
Audit Metadata