growth-architect
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses shell commands to automate the discovery of existing project assets and to facilitate file delivery.
- Evidence: In
assets/modes/ANALYZE.md, shell commands includingls,sort, andheadare used to retrieve the most recent analysis and architecture decision records from the output directory. - Evidence: The skill's delivery workflow in
SKILL.mdincludes an option to move files to a custom destination provided by the user. - [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection through the ingestion of untrusted project documentation.
- Ingestion points: The skill reads project-level files such as
AGENTS.md,CLAUDE.md, andREADME.md, along with previous analyses and ADRs located in the user's output directory. - Boundary markers: No specific delimiters or instructions to ignore instructions within the ingested content are present in the prompts.
- Capability inventory: The skill is authorized to use
Bash,Write,Read,Glob, andGrep, which could be exploited if malicious instructions are successfully injected. - Sanitization: There are no mechanisms described for sanitizing or validating the content of the markdown files before they are processed by the agent.
Audit Metadata