writing-skills
Warn
Audited by Gen Agent Trust Hub on Apr 12, 2026
Risk Level: MEDIUMPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill and its supporting documentation (
persuasion-principles.md,testing-skills-with-subagents.md) explicitly teach and model the use of psychological persuasion techniques to override the agent's internal reasoning and 'rationalization' processes. It instructs the use of high-pressure language (e.g., 'YOU MUST', 'No exceptions', 'Violating the letter... is violating the spirit') and cites research on persuading AI to comply with 'objectionable requests' as a foundation for enforcing discipline. - [COMMAND_EXECUTION]: The included utility script
render-graphs.jsuseschild_process.execSyncto execute the systemdot(Graphviz) command andwhich dot. While functionally necessary for its stated purpose, it represents arbitrary shell command execution triggered by processing markdown content. - [COMMAND_EXECUTION]: The skill provides instructions for the agent to use various shell commands such as
ls,grep,wc, andrm(implied by 'delete means delete') to manage and verify skill files in the user's directory. - [PROMPT_INJECTION]: The skill includes 'Pressure Scenarios' designed to manipulate the agent into choosing specific behaviors by simulating high-stress environments, such as production outages costing $10k/minute, to test whether the agent will bypass safety or procedural guidelines.
Audit Metadata