cyberarian
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill manages documentation by parsing user-provided markdown files and YAML frontmatter. This creates an attack surface where malicious instructions embedded in document metadata could influence agent behavior when scripts or summaries are processed. Ingestion points:
scripts/index_docs.py,scripts/archive_docs.py, andscripts/validate_doc_metadata.py. Boundary markers: Absent. Capability inventory: Local file operations (read, write, delete) and subprocess execution via agent instructions. Sanitization: All scripts useyaml.safe_load()for secure metadata parsing, mitigating unsafe deserialization risks. - [Safe Operations] (SAFE): No hardcoded credentials, external network requests, or obfuscation techniques were detected. The skill's activities are constrained to the local documentation directory.
Audit Metadata