Skills
skills/synapsync/synapse_registry/sprint-forge/Gen Agent Trust Hub

sprint-forge

Pass

Audited by Gen Agent Trust Hub on Mar 8, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection due to its core workflow of analyzing untrusted codebases. \n
  • Ingestion points: The 'Deep Analysis' phase in assets/modes/INIT.md and the task execution loop in assets/modes/SPRINT.md read arbitrary content from the project directory. \n
  • Boundary markers: Absent; the prompts do not provide instructions to differentiate between project code and instructions, allowing malicious comments in code to be interpreted as tasks. \n
  • Capability inventory: The skill leverages Bash, Write, Edit, and Task tools to modify files and run system commands. \n
  • Sanitization: Absent; codebase contents are interpolated directly into the context for decision-making and task generation.\n- [COMMAND_EXECUTION]: The SPRINT execution workflow (assets/modes/SPRINT.md, Step 8) allows the agent to run verification commands and apply changes using the Bash tool. These commands are derived from tasks generated during the analysis of the user's local files.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 8, 2026, 04:33 PM