writing-skills
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection through its file analysis features.
- Ingestion points: Workflow functions like auditSkill, convertSkill, and verifySkill in SKILL.md read the content of external SKILL.md files into the agent context.
- Boundary markers: There are no delimited boundaries or instructions to ignore embedded commands within the processed file content.
- Capability inventory: The skill utilizes powerful tools including Bash, Write, and Task, which could be misused if the agent is manipulated by instructions inside a read file.
- Sanitization: The skill does not perform escaping or validation of external content before interpolation.
Audit Metadata