Skills
skills/boshu2/agentops/post-mortem/Gen Agent Trust Hub

post-mortem

Pass

Audited by Gen Agent Trust Hub on May 28, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill ingests untrusted data from implementation history (git logs, issue comments) which creates a surface for indirect prompt injection (Category 8).
  • Ingestion points: Extracts project data via git log, bd show, and structured artifacts in .agents/plans/ and .agents/learnings/.
  • Boundary markers: Utilizes structured markdown templates and explicit section headers to organize and delimit processed content.
  • Capability inventory: Executes local shell scripts (closure-integrity-audit.sh, write-evidence-only-closure.sh), git commands, and performs file writes to .agents/ and the project MEMORY.md.
  • Sanitization: Employs jq for structured JSON data generation and regex-based path extraction to validate and filter implementation metadata.
Audit Metadata
Risk Level
SAFE
Analyzed
May 28, 2026, 04:12 AM
Security Audit — agent-trust-hub — post-mortem