Skills
skills/zhucl1006/ailesuperpowers/aile-executing-plans/Gen Agent Trust Hub

aile-executing-plans

Pass

Audited by Gen Agent Trust Hub on Mar 19, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes Git commands (status, add, commit) to manage the development workflow. These operations are gated by explicit user requests. It also implies the execution of tests and implementation code as part of the TDD cycle.- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection (Category 8) because it reads and follows instructions stored in local plan files (docs/plans/*.md).
  • Ingestion points: Reads analysis.md, plan.md, and versioned plan files from the docs/plans/ directory.
  • Boundary markers: No explicit delimiters are used to separate plan content from system instructions, although the agent is told to 'critically review' the plan.
  • Capability inventory: The agent can execute Git commands and is tasked with writing and verifying implementation code.
  • Sanitization: No input validation or sanitization of the plan file content is performed prior to processing.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 19, 2026, 11:58 AM