Security Audit
PabloLION/bmad-plugin:plugins/bmad/skills/bmad-create-story
github.com/PabloLION/bmad-pluginTrust Assessment
PabloLION/bmad-plugin:plugins/bmad/skills/bmad-create-story received a trust score of 70/100, placing it in the Caution category. This skill has some security considerations that users should review before deployment.
SkillShield's automated analysis identified 1 finding: 1 critical, 0 high, 0 medium, and 0 low severity. Key findings include Prompt Injection Attempt via External Instruction.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on April 11, 2026 (commit 17efb6ce). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings1
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| CRITICAL | Prompt Injection Attempt via External Instruction The skill's primary instruction file (`SKILL.md`) contains an instruction within the untrusted content block that attempts to direct the host LLM to follow instructions from another file (`./workflow.md`). This is a direct attempt to manipulate the LLM's behavior using untrusted input, which could lead to unexpected actions or information disclosure if the referenced file contains malicious instructions. Remove or sanitize instructions within the untrusted content block. The LLM should not be directed by content provided by the skill itself in this manner. The skill's behavior should be defined by its manifest and trusted code, not by instructions embedded in untrusted user-facing documentation or prompts. | LLM | SKILL.md:3 |
Scan History
Embed Code
[](https://skillshield.io/report/8260a39458c4d86e)
Powered by SkillShield