roast-my-plan
Pass
Audited by Gen Agent Trust Hub on May 6, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted user plans and codebase data to provide feedback, which presents a surface for indirect prompt injection. Malicious instructions embedded in these external sources could influence the agent's behavior. * Ingestion points: User-provided plans and codebase files. * Boundary markers: None provided to distinguish between instructions and analyzed data. * Capability inventory: Includes the ability to inspect the local codebase. * Sanitization: No explicit sanitization or filtering of analyzed content is mentioned.
Audit Metadata