Skills
skills/vladm3105/aidoc-flow-framework/doc-sys-reviewer/Gen Agent Trust Hub

doc-sys-reviewer

Pass

Audited by Gen Agent Trust Hub on Mar 1, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill requires the agent to execute shell commands to perform file integrity checks and content filtering.
  • Evidence: Explicit instructions to use sha256sum, sed, and grep commands for drift detection and hashing logic.
  • Evidence: Command patterns such as sha256sum <file_path> | cut -d' ' -f1 and sed -n '/^## Section Name/,/^## /p' <file_path> | head -n -1 | sha256sum | cut -d' ' -f1.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection through the processing of untrusted markdown documentation.
  • Ingestion points: Reads System Requirements (SYS) and Architecture Decision Records (ADR) from the local file system (e.g., docs/06_SYS/ and docs/05_ADR/).
  • Boundary markers: Absent; the skill does not define delimiters or instructions to ignore potential commands embedded within the documentation files.
  • Capability inventory: The agent has access to shell execution utilities and the ability to write reports and metadata to the local filesystem.
  • Sanitization: Absent; the skill does not specify sanitization or validation of the markdown content before processing.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 1, 2026, 08:52 AM