handoff

Pass

Audited by Gen Agent Trust Hub on Jun 21, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill directs the agent to execute the mktemp command to generate a unique temporary file path on the system for saving the handoff document.
  • [PROMPT_INJECTION]: The skill incorporates user-provided arguments to guide the content of the handoff summary. While this creates an indirect prompt injection surface where user input could influence the instructions given to the next agent, it is consistent with the skill's primary purpose of summarizing user intent.
  • [DATA_EXPOSURE]: The instruction to "read the file before you write to it" is unusual for a newly created temporary file. While this does not pose an immediate exfiltration risk, it is an atypical pattern for file handling that encourages the agent to inspect file contents before performing write operations.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 21, 2026, 05:41 AM
Security Audit — agent-trust-hub — handoff