agent-orchestration-improve-agent
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill describes an optimization loop that analyzes historical interaction data and user feedback to refine agent prompts, creating a surface for indirect prompt injection. Maliciously crafted feedback could potentially influence the prompt refinement process.
- Ingestion points: Historical performance data and user feedback patterns are ingested via the context-manager tool as described in SKILL.md.
- Boundary markers: The skill does not specify the use of delimiters or 'ignore' instructions to isolate untrusted user feedback from the prompt engineering logic.
- Capability inventory: The skill leverages a prompt-engineer tool to modify agent instructions and uses a parallel-test-runner to execute and validate the updated agents.
- Sanitization: There are no mechanisms described for sanitizing, filtering, or validating external data before it is incorporated into the prompt optimization cycle.
Audit Metadata