project-intake-and-charter
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- General Security (SAFE): No malicious patterns, obfuscation, or data exfiltration attempts were detected. The skill operates entirely within the context of processing project-related text.- Indirect Prompt Injection (LOW): The skill processes untrusted user input and project state files. While this presents an ingestion surface for indirect prompt injection, the skill lacks high-risk capabilities such as command execution, filesystem modification (outside of project files), or network access, which effectively neutralizes the risk.- No Code (SAFE): This skill contains no executable scripts (Python, JavaScript, Shell, etc.). It relies solely on the underlying LLM's reasoning to generate and update Markdown documentation.
Audit Metadata