write-a-prd
Pass
Audited by Gen Agent Trust Hub on Apr 13, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted data from both user input and repository files during the planning phase.
- Ingestion points: User interviews and codebase exploration (Step 1, 2, and 3 in SKILL.md).
- Boundary markers: The skill does not define explicit delimiters or instructions to ignore embedded commands in the data being processed.
- Capability inventory: The skill utilizes file read capabilities for repository exploration and file write capabilities to save the PRD to plans/README.md.
- Sanitization: No explicit sanitization or validation of the ingested repository content is performed before processing.
Audit Metadata