skills/pluginagentmarketplace/custom-plugin-software-architect/architecture-documentation/Gen Agent Trust Hub
architecture-documentation
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Indirect Prompt Injection (LOW): The skill presents an attack surface where instructions embedded in the user-provided context could influence agent behavior.
- Ingestion points: Untrusted data enters the agent context through the
contextparameter defined inSKILL.md. - Boundary markers: Absent; the ADR and C4 templates do not use delimiters or instructions to ignore embedded commands within the provided context.
- Capability inventory: No high-risk capabilities were identified; the skill is primarily limited to text and diagram generation without network or arbitrary file system access.
- Sanitization: There is no evidence of input validation, escaping, or filtering of the
contextstring before it is interpolated into templates. - Metadata Inconsistency (SAFE): The skill contains mismatched version numbers (2.0.0 in
SKILL.mdvs 1.0.0 inconfig.yaml) and future-dated references (December 2025), which are likely maintenance oversights rather than malicious deception.
Audit Metadata