team-update-aggregator
Pass
Audited by Gen Agent Trust Hub on May 15, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [INDIRECT_PROMPT_INJECTION]: The skill processes untrusted content from local markdown and text files to generate a status report. Malicious instructions embedded within these team updates could potentially influence the agent's behavior during the aggregation process.\n
- Ingestion points: Processes all .md and .txt files in a user-provided directory or the current working directory as defined in SKILL.md (Step 1).\n
- Boundary markers: No specific delimiters or instructions to ignore embedded commands are specified when reading the source files.\n
- Capability inventory: The skill is capable of writing a new markdown file (team-status-YYYY-MM-DD.md) to the local file system (SKILL.md, Step 6).\n
- Sanitization: No explicit sanitization or filtering of the input file content is mentioned before it is interpolated into the final report.
Audit Metadata