Skills
skills/armelhbobdad/oh-my-skills/bmad-cis-storytelling/Gen Agent Trust Hub

bmad-cis-storytelling

Pass

Audited by Gen Agent Trust Hub on May 11, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill ingests untrusted external data which could contain malicious instructions designed to influence the agent's behavior. \n
  • Ingestion points: The workflow.md file (Step 1) indicates that the agent can load context from a provided data file path if a caller provides it. \n
  • Boundary markers: There are no explicit boundary markers or instructions to the model to ignore potential instructions embedded within the ingested context data. \n
  • Capability inventory: The skill has the capability to write the final narrative to a local file (workflow.md, Step 10). \n
  • Sanitization: No explicit sanitization or validation of the ingested context data is described in the workflow.
Audit Metadata
Risk Level
SAFE
Analyzed
May 11, 2026, 09:54 AM