Skills
skills/pedrohcgs/claude-code-my-workflow/verify-claims/Gen Agent Trust Hub

verify-claims

Pass

Audited by Gen Agent Trust Hub on Apr 18, 2026

Risk Level: SAFE
Full Analysis
  • [PROMPT_INJECTION]: The skill processes untrusted draft content which represents an indirect prompt injection surface. Maliciously crafted assertions in a draft could theoretically attempt to influence the subagent or the final reconciliation phase. However, the skill explicitly mitigates this by forking the subagent context and excluding the original draft text from its view.
  • Ingestion points: Draft file path provided in arguments.
  • Boundary markers: No explicit delimiters are mentioned for the extracted claims passed to the subagent.
  • Capability inventory: Uses Read for ingestion, Task for subagent orchestration, and Write for potential file regeneration.
  • Sanitization: No specific sanitization of extracted claim text is described.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 18, 2026, 02:13 AM