swarm
Pass
Audited by Gen Agent Trust Hub on May 19, 2026
Risk Level: SAFE
Full Analysis
- Structured Prompt Interpolation: The skill implements a template system in
scripts/interpolate.tsandscripts/batching.tsthat dynamically builds prompts for subagents. It includes a specific security-minded feature that rewrites placeholders in batched instructions to help subagents distinguish between instructions and data, reducing the risk of indirect prompt injection. - Scoped File System Operations: Local state is managed within a dedicated
.swarm/directory as shown inscripts/table.ts. The skill includes logic to sanitize session identifiers and automatically evicts old table data to maintain a clean environment. - Controlled Subagent Dispatch: Task execution is delegated to subagents using the platform's
swarm_tasktool. This creates a clear execution boundary, as subagents operate independently of the main agent's context and are constrained by the providedresponseSchema. - Input Validation: The
scripts/index.tsandscripts/table.tsfiles include validation steps to ensure that data sources (globs, file paths, or custom tasks) are well-formed and that row identifiers are unique before processing begins.
Audit Metadata