wiki-work
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches and updates the dot-wiki package using npx. This tool is maintained by the skill author (dev-goraebap).
- [COMMAND_EXECUTION]: Executes npx dot-wiki to perform version compatibility checks and manage project focus.
- [PROMPT_INJECTION]: Processes external PRD files and user input to generate task lists, which introduces a surface for indirect prompt injection.
- Ingestion points: Reads requirement files from .wiki/common/PRD-* and accepts free-form user descriptions.
- Boundary markers: Absent; the instructions do not specify delimiters to separate requirement data from system instructions.
- Capability inventory: The agent is instructed to read files and implement generated tasks, which may involve code modification and repository interaction.
- Sanitization: No validation or filtering is applied to the source requirements before they are used to generate implementation steps.
Audit Metadata