orchestration
Pass
Audited by Gen Agent Trust Hub on Jun 16, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, obfuscation, or unauthorized data access were detected. The skill's structure is consistent with its stated purpose of managing complex workflows through parallel agent coordination.\n- [PROMPT_INJECTION]: The skill facilitates processing of external data (code, PRs, research) which presents an attack surface for indirect prompt injection.\n
- Ingestion points: User-provided inputs and external files processed during orchestration tasks.\n
- Boundary markers: Use of a 'WORKER preamble' to scope sub-agent behavior.\n
- Capability inventory: Sub-agents are explicitly instructed to use
Bash,Read,Write, andEdittools to fulfill their tasks.\n - Sanitization: No specific content filtering or sanitization of the external data is implemented in the provided instructions.\n- [COMMAND_EXECUTION]: The orchestrator is explicitly forbidden from running commands itself, delegating these capabilities to workers. This design promotes a clear separation of concerns for software development and DevOps operations.\n- [EXTERNAL_DOWNLOADS]: References to standard package managers and official documentation for libraries such as shadcn/ui and Tailwind CSS are documented as part of the domain-specific knowledge base, aligned with standard developer workflows.
Audit Metadata