dispatching-parallel-agents
Pass
Audited by Gen Agent Trust Hub on Apr 25, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill documents a workflow for processing environment data (error logs, test failures) to generate sub-agent instructions. This creates a theoretical surface for Indirect Prompt Injection where malicious content in error logs could influence sub-agent behavior.
- Ingestion points: Test failure messages, logs, and filenames provided to the parent agent.
- Boundary markers: The skill recommends specific, focused prompt structures which provide logical context separation, though it does not mandate specific technical delimiters (e.g., XML tags).
- Capability inventory: The documented pattern utilizes the platform's task delegation tools (e.g.,
Task()) to spawn concurrent agents with file-writing and execution permissions. - Sanitization: No specific input sanitization or validation of the processed error content is discussed.
Audit Metadata