agile-product-owner
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWPROMPT_INJECTIONNO_CODE
Full Analysis
- PROMPT_INJECTION (LOW): The skill processes untrusted 'epics' to generate user stories, creating an indirect prompt injection surface. 1. Ingestion points: epic data input (user_story_generator.py). 2. Boundary markers: none specified in documentation. 3. Capability inventory: text generation and sprint planning logic. 4. Sanitization: none documented.
- NO_CODE (LOW): The skill references a script at 'scripts/user_story_generator.py' which was not included in the analysis package.
- SAFE (SAFE): No obfuscation, hardcoded credentials, or malicious metadata patterns were found in the provided markdown file.
Audit Metadata