Skills
skills/olivoil/skills/resolve-mappings/Gen Agent Trust Hub

resolve-mappings

Pass

Audited by Gen Agent Trust Hub on May 13, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill processes potentially untrusted data from external sources (such as calendar subjects, Slack channel names, and GitHub repository strings), creating a surface for indirect prompt injection.
  • Ingestion points: The data_to_map input field in SKILL.md receives external data strings.
  • Boundary markers: The instructions do not specify the use of delimiters or 'ignore' instructions for the data being processed.
  • Capability inventory: The skill performs file read and write operations within the .cache/om/intervals-cache/ directory.
  • Sanitization: There is no mention of sanitizing or escaping the input data before processing or writing it back to mapping files.
Audit Metadata
Risk Level
SAFE
Analyzed
May 13, 2026, 06:33 PM