vault-project-tracker
Pass
Audited by Gen Agent Trust Hub on Apr 12, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes content from project files and trackers, creating an attack surface for indirect prompt injection. * Ingestion points: Reads project documents in the 'projects/' directory and the 'project-tracker.md' file. * Boundary markers: No explicit delimiters or instructions are provided to isolate project content from agent instructions. * Capability inventory: Ability to read, write, and move files (archiving) within the local filesystem. * Sanitization: No content validation or sanitization is mentioned for the processed files.
Audit Metadata