session-handoff
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- COMMAND_EXECUTION (LOW): The skill relies on executing local Python scripts to automate handoff management. While only the source for 'list_handoffs.py' is provided, the described functionality for the others is consistent with the skill's purpose.
- DATA_EXPOSURE (SAFE): Includes a proactive security step to scan documents for secrets like API keys and passwords before they are finalized.
- INDIRECT_PROMPT_INJECTION (LOW): The 'RESUME' workflow ingests previously saved markdown files as context. 1. Ingestion points: 'SKILL.md' (RESUME Workflow Step 3). 2. Boundary markers: Absent. 3. Capability inventory: Python script execution and file system access. 4. Sanitization: Secret detection is present, but no instruction filtering.
Audit Metadata