brainstorming
Pass
Audited by Gen Agent Trust Hub on Feb 20, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No malicious override or bypass instructions were detected in the skill contents.
- [Data Exposure & Exfiltration] (SAFE): The skill reads project files and git history for legitimate context gathering but does not include network operations or external data transmission.
- [Indirect Prompt Injection] (LOW): The skill is susceptible to indirect prompt injection via the processing of untrusted project data.
- Ingestion points: Project files, documentation, and recent git commits (via SKILL.md process description).
- Boundary markers: Absent; project content is read without delimiters to distinguish data from instructions.
- Capability inventory: Reading local project state and writing new design documents to the disk.
- Sanitization: Absent; the skill does not specify any sanitization or validation of the content read from the project environment.
- [External Downloads & RCE] (SAFE): No remote code execution patterns or external package installations were found.
Audit Metadata