update-docs
Pass
Audited by Gen Agent Trust Hub on Apr 20, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: Indirect Prompt Injection Surface. The skill is susceptible to instructions embedded in the data it processes (source code and documentation files).
- Ingestion points: Files are ingested using Read, Grep, Glob, and Bash (find, ls) as specified in Step 1 and Step 2.
- Boundary markers: The instructions do not define delimiters or specific 'ignore' markers for the content of the files being analyzed.
- Capability inventory: The skill utilizes Write and Edit tools and operates in an environment where Bash(node:*) is permitted, providing a significant surface for an injection to cause unauthorized file modifications.
- Sanitization: There is no implementation of content validation or sanitization to prevent adversarial instructions in code comments from being executed or influencing the documentation output.
Audit Metadata