cogworks-encode
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill includes a shell script
scripts/validate-synthesis.shdesigned to validate the formatting, citation density, and structural integrity of synthesis outputs. This script runs locally using standard utilities and does not exhibit malicious network or file access behaviors. - [SAFE]: The skill provides comprehensive guidelines for mitigating indirect prompt injection by treating all external source content as untrusted data and strictly forbidding the execution of instructions found within processed materials. Ingestion points: External source sets provided for synthesis (SKILL.md, reference.md). Boundary markers: Instructions to neutralize delimiters before processing (SKILL.md). Capability inventory: Local bash script execution (SKILL.md). Sanitization: Mandatory treatment of source instructions as evidence rather than runtime commands (SKILL.md).
- [SAFE]: All external references are directed toward the author's own GitHub repository, representing a safe and legitimate vendor resource.
Audit Metadata