writing-plans
Pass
Audited by Gen Agent Trust Hub on Apr 19, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: No malicious behaviors such as data exfiltration, unauthorized network access, or credential harvesting were detected. The skill is primarily focused on markdown document generation and planning workflow management.
- [PROMPT_INJECTION]: The skill features a surface for indirect prompt injection by processing external specifications to generate implementation plans.
- Ingestion points: Technical specifications or requirements files are consumed as primary input in SKILL.md and plan-document-reviewer-prompt.md.
- Boundary markers: None present to distinguish between untrusted input data and the planning instructions.
- Capability inventory: The generated output includes instructions for file creation, code modification, and shell commands like git and pytest.
- Sanitization: The skill does not implement validation or escaping for the content of the provided specifications.
Audit Metadata