zr-readme
Pass
Audited by Gen Agent Trust Hub on May 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a documentation helper that provides templates for README generation. It does not perform any dangerous network operations, file access, or command execution beyond standard documentation tasks.
- [SAFE]: External references to 'img.shields.io' for badges and the author's own 'github.com/zenon-red/nexus' repository are legitimate and follow the intended purpose of the skill.
- [SAFE]: The skill defines a surface for indirect prompt injection by ingesting repository metadata into a README template.
- Ingestion points: Repository metadata (name, description, features) gathered during the process (SKILL.md).
- Boundary markers: Absent, though the strict template structure provides some implicit containment.
- Capability inventory: File writing (as part of the agent's core documentation tasks).
- Sanitization: Absent. This surface is considered safe given the specific, non-critical task of README generation.
Audit Metadata