require-update
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to suggest or execute specific CLI commands, including
hydpromptkitanddocs-repo, to manage Git commits and repository state. These tools are used to automate document synchronization. - [PROMPT_INJECTION]: The skill contains a surface for indirect prompt injection as it processes user-provided modification instructions to update markdown files without strict validation.
- Ingestion points: User-supplied modification instructions are ingested to determine the content of document updates.
- Boundary markers: None; the skill does not utilize delimiters or specific instructions to isolate user input from the agent's logic.
- Capability inventory: The skill possesses the capability to read and write markdown files on the local file system and generate shell commands.
- Sanitization: No sanitization or filtering logic is applied to the modification instructions before they are incorporated into the requirement documents.
Audit Metadata