structure-first-docs
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: No evidence of malicious command execution, data exfiltration, or obfuscation was found. The skill operates as described, focusing on document restructuring.
- [PROMPT_INJECTION]: Indirect Prompt Injection surface (Category 8). 1. Ingestion points: User-provided engineering documents processed for restructuring or review. 2. Boundary markers: Explicit 'Source fidelity first' rules and 'Primary Reader Flow' instructions. 3. Capability inventory: File-writing capability through the 'edit target files directly' instruction. 4. Sanitization: Requirements to 'verify each statement is source-traceable' and convert uncertain information into 'Open Questions'.
Audit Metadata