grill-me
Pass
Audited by Gen Agent Trust Hub on May 4, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill instructs the agent to explore the codebase if a question can be answered there. This creates an attack surface for indirect prompt injection, where malicious instructions hidden in code comments or metadata could be executed or followed by the agent during exploration.
- Ingestion points: User codebase (referenced in SKILL.md).
- Boundary markers: None; there are no delimiters or instructions to ignore embedded commands in the files being read.
- Capability inventory: Relies on the agent's native codebase exploration and analysis tools.
- Sanitization: No sanitization or validation of the codebase content is specified.
Audit Metadata