track-master
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE] (SAFE): No malicious code or command execution patterns were found. The skill consists of informational markdown files and process guidelines.
- [Indirect Prompt Injection] (SAFE): The skill identifies a surface for indirect prompt injection by ingesting untrusted data from project files and commit logs. 1. Ingestion points: conductor/index.md, plan.md, and git commit history. 2. Boundary markers: Absent; no specific delimiters or ignore instructions are defined. 3. Capability inventory: Standard file system read/write operations for registry maintenance. 4. Sanitization: Absent; no evidence of escaping or validation of external content.
Audit Metadata