orchestration

Pass

Audited by Gen Agent Trust Hub on Jun 16, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: No malicious patterns, obfuscation, or unauthorized data access were detected. The skill's structure is consistent with its stated purpose of managing complex workflows through parallel agent coordination.\n- [PROMPT_INJECTION]: The skill facilitates processing of external data (code, PRs, research) which presents an attack surface for indirect prompt injection.\n
  • Ingestion points: User-provided inputs and external files processed during orchestration tasks.\n
  • Boundary markers: Use of a 'WORKER preamble' to scope sub-agent behavior.\n
  • Capability inventory: Sub-agents are explicitly instructed to use Bash, Read, Write, and Edit tools to fulfill their tasks.\n
  • Sanitization: No specific content filtering or sanitization of the external data is implemented in the provided instructions.\n- [COMMAND_EXECUTION]: The orchestrator is explicitly forbidden from running commands itself, delegating these capabilities to workers. This design promotes a clear separation of concerns for software development and DevOps operations.\n- [EXTERNAL_DOWNLOADS]: References to standard package managers and official documentation for libraries such as shadcn/ui and Tailwind CSS are documented as part of the domain-specific knowledge base, aligned with standard developer workflows.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 16, 2026, 03:11 AM
Security Audit — agent-trust-hub — orchestration