gsd-new-project
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface. 1. Ingestion points: Idea documents ingested via '@' references to provide project context. 2. Boundary markers: Absent; the instructions do not define delimiters to separate user-provided content from agent instructions. 3. Capability inventory: The skill utilizes Bash, Write, and Task tools, providing the ability to execute commands and modify the local filesystem. 4. Sanitization: Absent; no validation or filtering of the ingested document content is specified before it is used in the research and planning workflow.
Audit Metadata