Skills
skills/dhruvbaldawa/ccconfigs/grill-me/Gen Agent Trust Hub

grill-me

Pass

Audited by Gen Agent Trust Hub on Apr 30, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill instructions focus on a structured interviewing process for design review. No evidence of prompt injection, data exfiltration, or unauthorized command execution was found.
  • [INDIRECT_PROMPT_INJECTION]: The skill has an inherent surface for indirect prompt injection as it processes untrusted data from the user and the codebase.
  • Ingestion points: User-provided plans/designs and the local codebase (SKILL.md).
  • Boundary markers: None specified in the prompt.
  • Capability inventory: Uses the AskUserQuestion tool and performs codebase exploration (file reads).
  • Sanitization: No specific sanitization or filtering is mentioned for the ingested content.
  • Note: While the surface exists, the risk is minimal as the skill does not utilize high-privilege tools or network operations.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 30, 2026, 09:16 PM