type-generator
Fail
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: HIGHPROMPT_INJECTION
Full Analysis
- Indirect Prompt Injection (HIGH): The skill provides an attack surface for indirect prompt injection by reading untrusted project files and possessing write permissions.
- Ingestion points: Reads code via Read, Grep, and Glob tools.
- Boundary markers: Does not implement any delimiters or instructions to ignore commands within ingested content.
- Capability inventory: Includes Write and Edit tools, enabling the agent to change files based on potentially malicious input.
- Sanitization: Lacks any filtering or sanitization of the data being analyzed.
Recommendations
- AI detected serious security threats
Audit Metadata