grill-with-docs
Pass
Audited by Gen Agent Trust Hub on May 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security risks were identified. The skill's behavior is consistent with its stated purpose of assisting in domain modeling and documentation management within a local development environment.
- [COMMAND_EXECUTION]: The skill instructs the agent to read and explore the codebase and update documentation files. These operations are restricted to the local project directory and align with the tool's intended use case.
- [DATA_EXFILTRATION]: There are no network requests or attempts to access sensitive system files or credentials such as SSH keys or environment variables.
- [INDIRECT_PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection as it ingests data from the local codebase to generate documentation. Ingestion points: project source code and documentation files. Boundary markers: absent. Capability inventory: file read and write. Sanitization: none mentioned.
Audit Metadata