ts-workflow-implement-review

Pass

Audited by Gen Agent Trust Hub on Jun 29, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: No security issues detected. The skill functions as a structured router for development workflows.- [PROMPT_INJECTION]: The skill contains an attack surface for indirect prompt injection because it interpolates user-provided requests and review findings into sub-agent prompts. * Ingestion points: The CREATE_LOG step saves the user request to a log file. * Boundary markers: The skill relies on Markdown headers to structure the log data. * Capability inventory: The router dispatches sub-agents that use tools like ts-implement to modify the project. * Sanitization: No explicit sanitization of the user request is performed before passing it to sub-agents.- [COMMAND_EXECUTION]: The skill manages the lifecycle of sub-agents as part of its primary orchestration logic, ensuring that sub-agent processes are terminated after each pass.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 29, 2026, 08:37 AM
Security Audit — agent-trust-hub — ts-workflow-implement-review