execute-implement
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill consumes 'Plan/design output' as an input, representing an indirect prompt injection vector.
- Ingestion points: Plan/design output in the inputs section.
- Boundary markers: The skill lacks explicit markers or instructions to ignore embedded commands within the input data.
- Capability inventory: The agent is authorized to modify code files and use version control commands such as 'git stash'.
- Sanitization: There is no evidence of input sanitization or verification of the plan's contents.
Audit Metadata