docs-impact-architect
Pass
Audited by Gen Agent Trust Hub on May 16, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [Indirect Prompt Injection Surface]: The skill processes untrusted pull request data. This is a security consideration as external data could contain instructions meant to influence the agent's behavior.\n
- Ingestion Points: Pull request descriptions and code diffs (via gh pr diff).\n
- Boundary Markers: None identified in the prompt instructions.\n
- Capability Inventory: Limited to documentation analysis and architectural proposals; the skill does not use network or arbitrary shell execution capabilities.\n
- Sanitization: No explicit sanitization or filtering of input data is mentioned.\n- [Standard Tool Integration]: The skill references the use of common development tools for accessing repository information. This behavior is aligned with its role in a documentation workflow and does not represent an unusual security risk.
Audit Metadata