sprint-review-summarizer
Pass
Audited by Gen Agent Trust Hub on May 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill instructions and documentation define a benign workflow for summarizing user-provided text. There is no evidence of credential theft, data exfiltration, or malicious command execution.\n- [PROMPT_INJECTION]: The skill processes untrusted user input which constitutes an indirect prompt injection surface.\n
-
- Ingestion points: Sprint notes provided by the user as text or referenced via file path are parsed in SKILL.md.\n
-
- Boundary markers: The instructions do not specify any delimiters or instructions to ignore potential commands embedded within the notes.\n
-
- Capability inventory: Analysis of the skill reveals no access to network tools, file system modification tools, or code execution environments.\n
-
- Sanitization: The skill does not perform any escaping or validation of the input content.\n
- Conclusion: Due to the total lack of exploitable capabilities, the risk of indirect prompt injection is negligible.
Audit Metadata