pm-level-check
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: Indirect prompt injection vulnerability surface. Ingestion points: User-provided PM names and self-assessment data enter the agent context (SKILL.md). Boundary markers: Absent; there are no delimiters or instructions to ignore embedded instructions within user-provided data. Capability inventory: The skill performs file-write operations to the assessments/ folder (SKILL.md) and file-read operations using @file syntax. Sanitization: Absent; no sanitization, escaping, or validation of external content is performed before processing.
Audit Metadata