c4-container
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- Indirect Prompt Injection (LOW): The skill is designed to ingest and analyze untrusted external configuration and architectural data.\n
- Ingestion points: Instructions in 'SKILL.md' explicitly prompt the agent to 'Analyze Kubernetes manifests', 'analyze Dockerfiles', and read local documentation files like 'c4-component-name.md'.\n
- Boundary markers: None identified. The instructions do not provide delimiters or specific guidelines for the agent to ignore or isolate commands found within the analyzed files.\n
- Capability inventory: The skill's capabilities are limited to reading project files and generating descriptive text/diagrams; no autonomous code execution or network exfiltration tools are defined within the skill itself.\n
- Sanitization: None. No validation, escaping, or filtering of the ingested configuration file content is specified.
Audit Metadata