skill-writer
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill instructs the agent to use standard system commands such as mkdir, ls, and cat for directory management and file validation within the user's local skill folders (~/.claude/skills/). These operations are essential for the skill's primary function and pose no security risk.
- [PROMPT_INJECTION] (SAFE): The skill presents an indirect prompt injection surface as it processes user requirements to generate content for new skills. However, no specific malicious injection patterns or bypass attempts were found. Evidence Chain: 1. Ingestion points: Clarifying questions during the skill scope determination phase; 2. Boundary markers: Absent in instructions for generating skill content; 3. Capability inventory: Filesystem access (mkdir, ls, cat) and file writing (SKILL.md); 4. Sanitization: Absent, as the skill relies on the agent's core safety protocols.
Audit Metadata