functional-design
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWPROMPT_INJECTION
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill processes untrusted input from product-requirements.md to generate documentation, which is susceptible to embedded instructions. * Ingestion points: docs/product-requirements.md (File read via agent). * Boundary markers: None identified in the skill instructions. * Capability inventory: File read (docs/product-requirements.md) and file write (docs/functional-design.md). No arbitrary code execution or network exfiltration capabilities were found. * Sanitization: No validation or sanitization of input content is mentioned.
Audit Metadata