docs-writer
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [Indirect Prompt Injection] (SAFE): The skill processes user-provided code and concepts to generate documentation. While this is an ingestion surface, the output is limited to static content (MDX files and Mermaid diagrams) with no execution or downstream automation capabilities detected.- [Data Exposure & Exfiltration] (SAFE): No evidence of unauthorized file access, network requests, or credential exposure. The skill references local documentation templates within the expected project structure.- [Prompt Injection] (SAFE): The instructions are strictly focused on documentation structure and educational philosophy. There are no attempts to override safety filters or bypass system instructions.- [Unverifiable Dependencies & Remote Code Execution] (SAFE): The skill does not install external packages or download/execute remote scripts.
Audit Metadata