collaborative-ideation
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- Indirect Prompt Injection (LOW): The skill reads project files and git history to understand context, creating a surface for indirect prompt injection. * Ingestion points: Local files, documentation, and git commit history as specified in the 'Understanding the idea' section. * Boundary markers: None present; the agent is not instructed to ignore instructions found within project data. * Capability inventory: File system write access to the 'docs/plans/' directory and Git command execution for commits and worktrees. * Sanitization: None present.
Audit Metadata