brainstorming
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it analyzes external data sources to inform its design process.
- Ingestion points: The skill instructions in
SKILL.mddirect the agent to check files, docs, and recent git commits. - Boundary markers: No delimiters or specific instructions to ignore embedded commands within the processed data are provided.
- Capability inventory: The skill can write design documents to the filesystem, perform git commits, and invoke other functional skills like
superpowers:using-git-worktrees. - Sanitization: No evidence of sanitization or validation of the ingested project context is present.
Audit Metadata