project-guide
Pass
Audited by Gen Agent Trust Hub on Apr 14, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill reads project-level documentation (e.g., README.md, AGENTS.md, copilot-instructions.md) to extract project rules. This constitutes an indirect prompt injection surface where instructions embedded in these files could theoretically influence the agent's summary or behavior.
- Ingestion points: Reads project files including README.md, docs/, copilot-instructions.md, and AGENTS.md.
- Boundary markers: The skill does not explicitly define delimiters for untrusted file content.
- Capability inventory: File system search, read, and write (markdown documentation) capabilities.
- Sanitization: No explicit content validation or sanitization is performed on the ingested data before it is summarized and written back to the project.
- [SAFE]: The skill's primary functions—reading configuration files and writing Markdown documentation—are restricted to the local project environment and align with its stated purpose. It does not attempt to access sensitive system paths (like .ssh or .aws) or communicate with external network endpoints.
Audit Metadata