task-implementer
Pass
Audited by Gen Agent Trust Hub on Apr 5, 2026
Risk Level: SAFENO_CODEPROMPT_INJECTION
Full Analysis
- [NO_CODE]: The skill package consists of markdown instruction files and YAML configuration without any executable scripts or binary files.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection (Category 8) because it uses external data (implementation brief) to drive file system modifications.
- Ingestion points: The workflow relies on an external
implementation_briefinput as the primary driver for agent actions (SKILL.md). - Boundary markers: The skill does not define specific delimiters or instructions to ignore embedded malicious content within the provided brief.
- Capability inventory: The skill possesses file-reading and file-writing capabilities to implement code and documentation changes.
- Sanitization: There is no mechanism described to validate or sanitize the content of the brief before implementation.
Audit Metadata