write-claude-md
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the
Greptool for security auditing by searching the codebase for secrets like API keys. This is a local, defensive operation to prevent sensitive data exposure. - [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection because it reads external configuration files to identify project technologies.
- Ingestion points: Configuration files like
package.json,DESCRIPTION, andCargo.tomlare read during the tech-stack identification step. - Boundary markers: None explicitly implemented for ingested file data.
- Capability inventory: The agent is granted
Read,Write,Edit,Bash,Grep, andGlobpermissions. - Sanitization: The skill proactively instructs the agent to use placeholders for any credentials found, mitigating the risk of accidental exposure.
Audit Metadata