Skills
skills/iamladi/cautious-computing-machine--sdlc-plugin/judgment-eval/Gen Agent Trust Hub

judgment-eval

Pass

Audited by Gen Agent Trust Hub on Mar 29, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill processes untrusted external data by reading agent definitions from user-supplied file paths or text arguments. This creates a surface for indirect prompt injection (Category 8).
  • Ingestion point: Agent definition provided via $ARGUMENTS in SKILL.md.
  • Boundary markers: Not explicitly defined in the intake process.
  • Capability inventory: File read operations to access agent definitions.
  • Sanitization: No explicit sanitization or filtering of the ingested agent definition.
  • [SAFE]: The skill operates entirely within the conversation and does not use external APIs or automated execution mechanisms. All evaluations are conducted interactively and require human oversight.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 29, 2026, 03:28 AM