investigation-workflow
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill defines a logical instructional framework for system analysis. It does not contain executable code, obfuscation, unauthorized network requests, or credential exposure.
- [PROMPT_INJECTION]: The workflow's primary function is system investigation, which involves processing external files and logs (Phase 3). While this creates a surface for indirect prompt injection, it is an inherent part of the skill's research purpose.
- Ingestion points: Analysis of code paths, configurations, and logs in Phase 3.
- Boundary markers: None explicitly defined in the workflow text for ingested data.
- Capability inventory: Parallel agent invocation and persistent memory storage via store_discovery().
- Sanitization: The structured verification (Phase 4) and synthesis (Phase 5) steps act as logical filters before finalizing results.
Audit Metadata