tool-design-sprint-readiness
Pass
Audited by Gen Agent Trust Hub on May 18, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides instructional content for a project management assessment process. No malicious patterns, command execution, or data exfiltration vectors were identified in the instructions, examples, or templates. All referenced domains (e.g., gv.com, google.com) are well-known, trusted sources for the design sprint framework.
- [INDIRECT_PROMPT_INJECTION]: The skill ingests user-provided content such as "challenge descriptions" and "hypotheses". While this constitutes a surface for indirect prompt injection, the skill lacks high-privilege capabilities (like shell access, file-system writes, or network requests) that would make this surface exploitable.
Audit Metadata