migrate-turboplans
Pass
Audited by Gen Agent Trust Hub on Apr 18, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill requires the agent to manage file system resources within the local project directory, including creating the .turbo/shells/ directory, relocating files, and deleting legacy artifacts like .turbo/prompt-plans/ and .turbo/prompts.md as part of the migration process.
- [PROMPT_INJECTION]: The skill possesses an indirect prompt injection vulnerability surface due to its data-handling procedures.
- Ingestion points: Content is ingested from user-controlled files located in .turbo/prompt-plans/, .turbo/plans/, and .turbo/shells/.
- Boundary markers: The skill does not define specific delimiters or instructional barriers to prevent the agent from executing instructions potentially embedded in the processed markdown files.
- Capability inventory: The agent utilizes tool-based capabilities to read, write, and delete files within the project's .turbo folder.
- Sanitization: No explicit sanitization or validation of the ingested text is performed before it is rewritten into new plan files.
Audit Metadata