jira-worklog-review
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFE
Full Analysis
- [INDIRECT_PROMPT_INJECTION]: The skill processes external content from Jira issue fields, which represents a theoretical attack surface for indirect prompt injection.
- Ingestion points: Jira issue summaries, descriptions, and worklog details are fetched via search tools in 01-review-daily-worklog.md and 02-suggestions-under-8h.md.
- Boundary markers: No explicit delimiters are used to wrap external content.
- Capability inventory: The skill has access to tools for creating Jira issues and adding worklogs.
- Sanitization: No explicit sanitization or filtering of retrieved issue content is implemented.
- [DATA_EXPOSURE_AND_EXFILTRATION]: The skill accesses Jira worklog and profile data. This is performed via the authenticated user context and official MCP tools. No unauthorized data exfiltration or hardcoded credentials were found.
Audit Metadata