docs-sync
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: Surface for indirect prompt injection detected where metadata is ingested from codebase files and written to documentation.
- Ingestion points: Reads name and description metadata from markdown files in .claude/ directories.
- Boundary markers: Lacks explicit delimiters or ignore-instructions for processed content.
- Capability inventory: Uses Write, Edit, and Bash tools to modify documentation files.
- Sanitization: Content is not sanitized before inclusion in the project's documentation.
Audit Metadata