section-merger
Pass
Audited by Gen Agent Trust Hub on Mar 15, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill performs local file operations to merge Markdown sections into a single draft. No high-risk behaviors such as network communication, privilege escalation, or arbitrary command execution were identified in the script or documentation.
- [PROMPT_INJECTION]: The skill provides a surface for indirect prompt injection as it aggregates content from multiple files into a single output document.
- Ingestion points: Content is read from 'sections/*.md', 'outline/outline.yml', 'outline/transitions.md', and 'GOAL.md' as specified in 'scripts/run.py'.
- Boundary markers: The skill merges content directly without employing boundary delimiters or instructions to ignore potential directives within the text.
- Capability inventory: The skill is restricted to reading and writing local files within the provided workspace; it does not possess network or shell execution capabilities.
- Sanitization: No sanitization, validation, or escaping is performed on the ingested text content before it is written to the final draft.
Audit Metadata