Skills
skills/shoootyou/get-shit-done-multi/gsd-plan-phase/Gen Agent Trust Hub

gsd-plan-phase

Pass

Audited by Gen Agent Trust Hub on Mar 12, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: Potential for indirect prompt injection due to the ingestion of external untrusted data.
  • Ingestion points: The skill accepts external files through the --prd argument and reads from existing RESEARCH.md and VERIFICATION.md files in the environment (SKILL.md).
  • Boundary markers: The skill does not define specific delimiters or instructions to prevent the agent from obeying commands that might be embedded in the external documentation it processes.
  • Capability inventory: The agent has access to powerful tools including Bash, Write, and WebFetch, which could be exploited if malicious instructions are successfully injected via the processed files.
  • Sanitization: There is no evidence of sanitization, escaping, or validation of the contents of the PRD or research files before they are provided to the planning agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 12, 2026, 07:07 PM