Skills
skills/grandcamel/confluence-assistant-skills/confluence-watch/Gen Agent Trust Hub

confluence-watch

Pass

Audited by Gen Agent Trust Hub on May 3, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection when processing data from the Confluence API.
  • Ingestion points: The skill retrieves user-controlled data, such as displayName and accountId, via the confluence watch list command as described in SKILL.md and references/api-reference.md.
  • Boundary markers: The skill instructions lack explicit boundary markers or warnings to the agent to disregard instructions embedded within the retrieved data.
  • Capability inventory: The skill environment allows for the execution of CLI commands (confluence) and file system writes (seen in the usage example confluence watch list 123456 --output json > watchers.json in SKILL.md).
  • Sanitization: No sanitization or validation of external content is specified before the data is interpolated into the agent's context.
Audit Metadata
Risk Level
SAFE
Analyzed
May 3, 2026, 07:14 PM