assignment-composition

Pass

Audited by Gen Agent Trust Hub on Jun 16, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [SAFE]: No malicious or suspicious patterns were identified in the skill's instructions or configuration.- [COMMAND_EXECUTION]: The skill utilizes Read, Write, Edit, Glob, and Grep tools to read from project files like phase-1-dimensions.md and generate phase-2-assignments.md. These operations are restricted to the local filesystem and serve the skill's primary purpose of artifact management.- [PROMPT_INJECTION]: The skill was analyzed for indirect prompt injection risks given its nature as a workflow orchestrator. 1. Ingestion points: Data is read from phase-1-dimensions.md. 2. Boundary markers: The skill uses standard markdown headings to delimit assignment sections. 3. Capability inventory: Filesystem access is requested via standard tools for reading and writing artifacts. 4. Sanitization: No explicit sanitization or 'ignore instructions' filtering is performed on the ingested content. This ingestion surface is a core functional requirement of the skill and does not indicate malicious intent.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 16, 2026, 12:03 PM
Security Audit — agent-trust-hub — assignment-composition