vpe-review
Pass
Audited by Gen Agent Trust Hub on May 14, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill invokes local Python scripts (
delivery_throughput_analyzer.py,eng_hiring_funnel_calculator.py,eng_team_structure_designer.py) to process engineering metrics. These scripts are referenced via relative paths to a linked skill directory (../../../skills/vpe-advisor/scripts/), which is consistent with the skill's purpose. - [PROMPT_INJECTION]: The skill processes data from external files, creating a surface for indirect prompt injection.
- Ingestion points: Data is read from
sprint_metrics.json,funnel.json, andteam.jsonas part of the analysis workflow. - Boundary markers: No explicit delimiters or instructions are used to separate untrusted data from processing commands.
- Capability inventory: The agent has the capability to execute subprocesses (Python) to perform the requested analysis.
- Sanitization: There are no documented steps for validating the schema or sanitizing the content of the ingested JSON files.
Audit Metadata