grill-me
Pass
Audited by Gen Agent Trust Hub on May 8, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: Indirect Prompt Injection Surface\n
- Ingestion points: The skill reads user-provided plans, designs, ideas, and codebase content (SKILL.md).\n
- Boundary markers: The skill does not specify the use of delimiters or instructions to ignore embedded commands within ingested data.\n
- Capability inventory: The agent is directed to explore the codebase, which typically involves file read operations (SKILL.md).\n
- Sanitization: There are no instructions for sanitizing or validating the content read from the codebase or provided by the user.
Audit Metadata