gsd-plan-milestone-gaps
Pass
Audited by Gen Agent Trust Hub on Apr 3, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface. 1. Ingestion points: The skill reads project audit results from the .planning/v*-MILESTONE-AUDIT.md files. 2. Boundary markers: There are no explicit instructions or delimiters used to prevent the agent from following instructions potentially embedded within the audit data. 3. Capability inventory: The skill utilizes the spawn_agent tool for task delegation and request_user_input for interactive selection. 4. Sanitization: No sanitization or validation of the audit file content is mentioned in the processing logic.
Audit Metadata