handoff
Pass
Audited by Gen Agent Trust Hub on May 8, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to use the standard system utility
mktempto generate a temporary file path for the handoff document. This is a common and safe practice for handling temporary data.- [PROMPT_INJECTION]: The skill identifies the conversation history as an input for summarization, which represents an indirect prompt injection surface. - Ingestion points: Conversation history (SKILL.md context).
- Boundary markers: Absent.
- Capability inventory: Shell command execution (
mktemp) and file system read/write access. - Sanitization: None.
Audit Metadata