documentation-readiness
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: No malicious patterns or security risks were identified. The skill correctly limits its scope to document assessment and local report generation.
- [PROMPT_INJECTION]: The skill is potentially vulnerable to indirect prompt injection because it processes untrusted data from documentation files and project metadata. 1. Ingestion points: Documentation files in the docs/ directory, pull request descriptions, and issue comments. 2. Boundary markers: The skill does not use specific delimiters to separate user data from its internal instructions. 3. Capability inventory: Reading local files and writing a markdown report to the filesystem. 4. Sanitization: The skill does not sanitize or filter the content of the documents it analyzes.
Audit Metadata