ambler-spec
Pass
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill facilitates the creation of files using untrusted user input, which introduces a risk of indirect prompt injection.
- Ingestion points: User-provided walk names and core logic descriptions in SKILL.md.
- Boundary markers: Absent. The instructions do not define clear delimiters or warnings to ignore instructions embedded in user-supplied data.
- Capability inventory: Uses the Write tool to create and modify files in the specs/ directory (SKILL.md).
- Sanitization: Absent. There is no explicit requirement for the agent to validate or escape user-supplied strings before they are used for filenames or content.
Audit Metadata