to-tickets
Pass
Audited by Gen Agent Trust Hub on Jul 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill defines a structured process for decomposition of tasks using 'tracer-bullet' slicing. It references standard software development practices such as ADRs and project-specific glossaries to ensure high-quality output. It interacts with well-known services (GitHub, Linear) for its intended functionality.
- [PROMPT_INJECTION]: The skill possesses an indirect prompt injection attack surface as it is designed to ingest and process data from external, potentially untrusted sources.
- Ingestion points: The agent is directed to fetch and read the full body and comments of issues or specifications from external URLs or local file paths provided by the user.
- Boundary markers: No explicit delimiters or instructions to ignore embedded commands within the fetched content are provided.
- Capability inventory: The skill can write to the local file system (creating
tickets.md) and perform network operations to publish issues to external platforms via API. - Sanitization: The instructions do not specify any validation or sanitization steps for the data retrieved from external sources before it is processed or used to generate tickets.
Audit Metadata