create-epic-ticket
Pass
Audited by Gen Agent Trust Hub on Jun 18, 2026
Risk Level: SAFE
Full Analysis
- [INDIRECT_PROMPT_INJECTION]: The skill processes untrusted user input in the form of feature descriptions, which creates a potential surface for indirect prompt injection attacks where malicious instructions could be embedded in the data.
- Ingestion points: Processes raw feature or initiative descriptions provided by the user in SKILL.md.
- Boundary markers: The skill does not implement specific delimiters or 'ignore embedded instructions' warnings for the input text.
- Capability inventory: The skill can interact with issue-tracker MCPs (e.g., Atlassian) to create tickets, potentially exfiltrating the generated content to an external system.
- Sanitization: No automated validation or filtering is performed on the input content; however, the skill explicitly mandates a human-in-the-loop confirmation step before any filing occurs.
Audit Metadata