update-docs
Pass
Audited by Gen Agent Trust Hub on Apr 5, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes project source code and documentation files to audit API coverage. This ingestion of untrusted local data represents a surface for indirect prompt injection.
- Ingestion points: Reads TypeScript component files, documentation components, and example files.
- Boundary markers: Absent for the data being read.
- Capability inventory: Local file read/write access and execution of build commands.
- Sanitization: Absent.
- [COMMAND_EXECUTION]: Executes 'yarn format' and 'nx run docs:build' in Phase 4. These commands are intended to format the code and verify the build integrity of the updated documentation, which is consistent with the skill's primary purpose.
Audit Metadata