security-architecture-review
Pass
Audited by Gen Agent Trust Hub on Mar 15, 2026
Risk Level: SAFENO_CODEPROMPT_INJECTION
Full Analysis
- [NO_CODE]: The skill consists entirely of markdown documentation and instructional text. No executable scripts, shell commands, or binary files are included.\n- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it processes untrusted system documentation and security requirements.\n
- Ingestion points:
architecture_docsandsecurity_reqsdefined inSKILL.md.\n - Boundary markers: Absent; there are no instructions to the agent to use delimiters or to disregard instructions embedded within the input data.\n
- Capability inventory: The skill has no high-risk capabilities (e.g., file system access, network connectivity, or code execution), which limits the impact of an injection.\n
- Sanitization: No sanitization or validation of the input content is performed by the skill's instructions.
Audit Metadata