quick-design
Pass
Audited by Gen Agent Trust Hub on May 13, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection through the ingestion of project documentation.
- Ingestion points: The Context Scan step reads files from design/gdd/, design/quick-specs/, and assets/data/.
- Boundary markers: Absent. There are no instructions to the agent to treat file content as untrusted or to ignore embedded instructions.
- Capability inventory: The skill utilizes Read, Glob, Grep, Write, and Edit tools.
- Sanitization: Absent. No filtering or escaping is applied to the content read from files before it is processed by the agent.
Audit Metadata