Skills
skills/taylorarndt/a11y-agent-team/github-workflow-standards/Gen Agent Trust Hub

github-workflow-standards

Pass

Audited by Gen Agent Trust Hub on Mar 29, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it ingests and processes untrusted data from GitHub activity.
  • Ingestion points: Ingests data from GitHub issues, pull requests, comments, and discussions, as well as local configuration files like package.json (SKILL.md).
  • Boundary markers: Absent; the instructions do not define delimiters or provide 'ignore instructions' warnings for external content.
  • Capability inventory: Includes operations to post comments, modify repository states (closing/merging), and write Markdown and HTML files to the workspace.
  • Sanitization: Absent; no explicit sanitization, validation, or escaping of ingested data is described before prompt interpolation.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 29, 2026, 11:44 PM
Security Audit — agent-trust-hub — github-workflow-standards