Skills
skills/mattgierhart/prd-driven-context-engineering/ghm-status-sync/Gen Agent Trust Hub

ghm-status-sync

Pass

Audited by Gen Agent Trust Hub on May 12, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to Indirect Prompt Injection because it ingests data from untrusted sources and uses it to modify the project's README.md.
  • Ingestion points: The skill reads content from README.md, PRD.md, EPIC session files in the epics/ directory, and agent memory files in .claude/agents/*/MEMORY.md.
  • Boundary markers: There are no explicit instructions or delimiters used to ensure the agent ignores embedded instructions within the ingested data.
  • Capability inventory: The skill utilizes Read, Write, Edit, Glob, and Grep tools to modify the project filesystem.
  • Sanitization: No sanitization or validation of the extracted strings is performed before they are interpolated into the README.md dashboard.
Audit Metadata
Risk Level
SAFE
Analyzed
May 12, 2026, 09:42 PM
Security Audit — agent-trust-hub — ghm-status-sync