review-requirements
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWPROMPT_INJECTIONNO_CODE
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill is designed to ingest and analyze untrusted external data such as task descriptions and pull request tickets.
- Ingestion points: External content enters the agent's context through user-provided tickets and requirements documents (see triggers in SKILL.md).
- Boundary markers: Absent. The skill does not define or suggest delimiters to isolate untrusted content.
- Capability inventory: None. The skill is limited to providing analysis and suggestions; it lacks access to the shell, file system, or network.
- Sanitization: Absent. There is no logic provided to filter or escape instructions embedded within the requirements.
- [No Code] (INFO): This skill contains no executable scripts or system commands, significantly limiting its ability to perform direct malicious actions.
Audit Metadata