generate-status-report
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted project documentation, which creates a surface for indirect prompt injection where hidden instructions in those files could influence agent actions.
- Ingestion points: The skill reads from PROJECT-CHARTER.md, BACKLOG.md, SPRINT-PLAN.md, WBS.md, and previous status reports.
- Boundary markers: No explicit delimiters or system instructions are defined to separate the data from the project files from the agent's core instructions or to prevent the agent from following commands embedded in those files.
- Capability inventory: The skill is authorized to use Read, Write, Edit, Bash, Grep, and Glob tools, which provide significant capabilities to modify the environment or execute code.
- Sanitization: There is no evidence of input validation, escaping, or filtering of the content extracted from the external artifacts before processing.
Audit Metadata