Skills
skills/hoangnb24/skills/compounding/Gen Agent Trust Hub

compounding

Pass

Audited by Gen Agent Trust Hub on Apr 14, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes a git log command to retrieve feature history. This is a standard and appropriate use of system tools for gathering project context.
  • [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface because it reads untrusted data from project history files and passes it to LLM subagents for analysis.
  • Ingestion points: The skill reads discovery.md, approach.md, CONTEXT.md, and git log outputs from the repository.
  • Boundary markers: Absent. The instructions to the subagents do not include delimiters or warnings to ignore potential instructions embedded within the analyzed documents.
  • Capability inventory: The skill has permissions to write new markdown files to the repository and optionally index data via CASS/CM services.
  • Sanitization: Absent. The skill does not perform any filtering or escaping of the ingested text before it is processed by the subagents.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 14, 2026, 02:26 PM