init
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to use standard system commands such as
lsandfindto inspect the repository's directory structure for context gathering. - [PROMPT_INJECTION]: The skill processes content from untrusted repository files (e.g., README.md, package.json) to generate the guidelines. This represents a surface for indirect prompt injection where malicious content in those files could influence the generated documentation, though the risk is limited to the documentation's content.
- Ingestion points: Reads project files including
README*,CONTRIBUTING*,DEVELOPMENT*,Makefile,pyproject.toml, andpackage.json. - Boundary markers: Not explicitly defined in instructions.
- Capability inventory: Limited to writing the
AGENTS.mdfile to the local filesystem. - Sanitization: None mentioned; relies on the agent's internal summarization logic.
Audit Metadata