Skills
skills/ki2pixel/render_signal_server/enhance/Gen Agent Trust Hub

enhance

Pass

Audited by Gen Agent Trust Hub on Mar 29, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill implements a 'Prompt Enhancement' workflow that exclusively reads local project files to provide context for AI requests.
  • [COMMAND_EXECUTION]: Uses filesystem tools (fast_read_file, fast_get_directory_tree, etc.) to access project-specific documentation and rules within the /home/kidpixel/render_signal_server-main/ directory. These operations are limited to reading (pulling) context.
  • [PROMPT_INJECTION]: Processes user-provided input ({{{ input }}}), creating a potential surface for indirect prompt injection. This risk is mitigated by explicit 'Golden Rules' that forbid the agent from executing tasks, modifying files, or generating functional code. 1. Ingestion points: User input via {{{ input }}} and external project files. 2. Boundary markers: Markdown headers define output structure. 3. Capability inventory: Filesystem read access only (fast-filesystem tools). 4. Sanitization: None, relying on structural constraints and explicit negative constraints ('NEVER BREAK' rules).
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 29, 2026, 05:30 AM
Security Audit — agent-trust-hub — enhance