planning-with-files
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFENO_CODEPROMPT_INJECTION
Full Analysis
- [SAFE]: No malicious patterns, obfuscation, or unauthorized commands were detected. The skill consists of instructional markdown files and examples.- [INDIRECT_PROMPT_INJECTION]: The skill defines a workflow for ingesting external data into local files, which presents a standard surface for indirect prompt injection.
- Ingestion points: External data stored in
notes.mdandtask_plan.md. - Boundary markers: Not specified in the guidelines.
- Capability inventory: File read, write, and edit tools.
- Sanitization: No sanitization steps are defined for external content.
Audit Metadata