markdown-writer
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: Indirect Prompt Injection Surface.
- Ingestion points: The agent is instructed to "Read the codebase" and "Read all route files" to understand project functionality (SKILL.md).
- Boundary markers: Absent. There are no instructions to disregard or delimit potential commands embedded within the code being analyzed.
- Capability inventory: None detected. SKILL.md does not contain instructions or reference tools for subprocess execution, network communication, or writing to the file system.
- Sanitization: Absent. The skill does not define methods to escape or validate content retrieved from the codebase.
Audit Metadata