orchestrate
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: No malicious patterns, hardcoded credentials, or unauthorized network operations were detected. The skill is designed for administrative planning and utilizes a limited set of tools (Read, Glob, Grep, Task) for reconnaissance purposes only.
- [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface as it ingests untrusted task descriptions through the $ARGUMENTS parameter. This surface is inherent to the skill's purpose and is handled safely by the agent's planning logic.\n
- Ingestion points: The $ARGUMENTS variable in SKILL.md.\n
- Boundary markers: None are explicitly defined in the orchestration template to isolate the user-provided task description.\n
- Capability inventory: Read, Glob, Grep, Task (used for file system discovery and task management).\n
- Sanitization: No sanitization or validation logic is present to filter malicious instructions within the input.
Audit Metadata