six-pager
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the Bash tool in Phase 3 of SKILL.md to run word count (wc) and calculator (bc) utilities for page count estimation. This is a functional use of system tools for document processing.
- [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection because it ingests untrusted text or file content in Phase 1 of SKILL.md to generate memos without using boundary markers or sanitization. * Ingestion points: User-provided topic strings and file content parsed in Phase 1 (SCOPE). * Boundary markers: None identified in the prompt logic. * Capability inventory: Read, Write, Edit, Bash, Glob, and Grep tools are available and used throughout SKILL.md. * Sanitization: No input validation or sanitization is specified.
Audit Metadata