management-talk
Pass
Audited by Gen Agent Trust Hub on May 20, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is designed to ingest and process untrusted data from external sources, creating a surface for indirect prompt injection.
- Ingestion points: The agent is instructed to process technical text provided by users and fetch data from JIRA ticket fields and comments via API calls (SKILL.md).
- Boundary markers: The skill lacks instructions for the agent to use delimiters to separate untrusted input from the system instructions, and it does not include warnings to ignore instructions embedded within the processed data.
- Capability inventory: The skill authorizes the agent to perform read and write operations on JIRA instances, including fetching issue details and posting comments (SKILL.md).
- Sanitization: No sanitization or validation steps are specified for the external content before it is processed or used to generate summaries.
Audit Metadata