implementation-workflow
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were detected in the skill instructions or reference files. The skill focuses on planning and strategic analysis using standard agent coordination patterns.
- [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection by processing external requirement files.
- Ingestion points: Requirement files and feature descriptions are ingested via the
/design:workflowcommand (File: references/workflow.md). - Boundary markers: Explicit delimiters or 'ignore embedded instructions' warnings for external content are not defined in the subagent prompts.
- Capability inventory: The skill utilizes subagents with capabilities for codebase analysis ('Explore') and documentation writes ('Write') (File: references/workflow.md).
- Sanitization: External data is processed directly by the model without specific sanitization, escaping, or schema validation mechanisms.
Audit Metadata