Skills
skills/pjt222/development-guides/model-markov-chain/Gen Agent Trust Hub

model-markov-chain

Pass

Audited by Gen Agent Trust Hub on Mar 18, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill instructions define an interface that is susceptible to indirect prompt injection via untrusted input data.
  • Ingestion points: transition_data and state_space parameters defined in SKILL.md.
  • Boundary markers: Absent; the instructions do not specify the use of delimiters or 'ignore' instructions for the processed data.
  • Capability inventory: The skill allows access to Bash, Read, and Write tools, which are powerful capabilities if misused.
  • Sanitization: Absent; the procedure does not include steps to sanitize or validate input data for malicious content before use.
  • [COMMAND_EXECUTION]: The skill requires access to the Bash tool to perform simulations and calculations. This provides a capability that could be exploited if malicious commands are hidden in the transition data.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 18, 2026, 07:13 AM