handoff
Pass
Audited by Gen Agent Trust Hub on May 13, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to use the
mktempshell utility to generate a unique temporary file path for the handoff document. - [PROMPT_INJECTION]: The skill involves summarizing the current conversation history. This creates an indirect prompt injection surface where untrusted data from the chat history could potentially influence the resulting summary document. However, the capability is limited to writing a local markdown file, and the risk is inherent to the skill's primary purpose of summarizing user-controlled input.
Audit Metadata