github-readme-generator
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill's 'auto-generate' feature instructs the agent to read and parse project files such as package.json, go.mod, and build scripts. This creates a surface for indirect prompt injection, where an attacker could place malicious instructions in project metadata to influence the agent's output or behavior.
- Ingestion points: Project configuration files (e.g., package.json, go.mod, pom.xml) and documentation files.
- Boundary markers: No delimiters or specific safety instructions are provided to the agent to distinguish between project data and instructions.
- Capability inventory: The agent has the ability to read local files and generate new markdown files based on templates.
- Sanitization: There is no logic provided to sanitize or validate the content extracted from the project files.
- [NO_CODE]: This skill consists entirely of Markdown files and templates. It does not include any Python scripts, Node.js packages, or binary executables, which reduces the potential for common attack vectors like remote code execution or privilege escalation.
Audit Metadata