skills/mattpocock/skills/to-tickets/Gen Agent Trust Hub

to-tickets

Pass

Audited by Gen Agent Trust Hub on Jul 10, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill defines a structured process for decomposition of tasks using 'tracer-bullet' slicing. It references standard software development practices such as ADRs and project-specific glossaries to ensure high-quality output. It interacts with well-known services (GitHub, Linear) for its intended functionality.
  • [PROMPT_INJECTION]: The skill possesses an indirect prompt injection attack surface as it is designed to ingest and process data from external, potentially untrusted sources.
  • Ingestion points: The agent is directed to fetch and read the full body and comments of issues or specifications from external URLs or local file paths provided by the user.
  • Boundary markers: No explicit delimiters or instructions to ignore embedded commands within the fetched content are provided.
  • Capability inventory: The skill can write to the local file system (creating tickets.md) and perform network operations to publish issues to external platforms via API.
  • Sanitization: The instructions do not specify any validation or sanitization steps for the data retrieved from external sources before it is processed or used to generate tickets.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 10, 2026, 01:20 PM
Security Audit — agent-trust-hub — to-tickets