gsp-project-state-assessment
Pass
Audited by Gen Agent Trust Hub on May 3, 2026
Risk Level: SAFEDATA_EXFILTRATIONPROMPT_INJECTIONNO_CODE
Full Analysis
- [DATA_EXFILTRATION]: The skill instructs the agent to look for "production environment files", "deployment configs", "analytics / telemetry", and "app store or distribution metadata". This directs the agent to read potentially sensitive files into its context. Although no network transmission is specified, this creates a surface for data exposure as the agent is explicitly tasked with identifying and accessing sensitive configuration data.
- [PROMPT_INJECTION]: The skill ingests untrusted data from the analyzed repository (such as release notes, changelogs, and documentation) to generate its assessment, establishing a surface for indirect prompt injection.
- Ingestion points: Local repository files including docs, release notes, and changelogs (SKILL.md).
- Boundary markers: None (The skill does not define delimiters for content read from the repo).
- Capability inventory: Local repository file access for reading and markdown file generation (SKILL.md).
- Sanitization: None (The instructions do not specify any validation for the content processed).
- [NO_CODE]: The skill consists entirely of markdown instructions and does not contain any executable scripts, binaries, or remote code dependencies.
Audit Metadata