Content Repurposer
Pass
Audited by Gen Agent Trust Hub on May 20, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection because it ingests and processes untrusted user-provided content.
- Ingestion points: Source material such as blog posts, transcripts, and notes are ingested into the agent's context via the instructions in
SKILL.md. - Boundary markers: The prompt does not utilize delimiters or specific instructions to isolate source content or to ignore potential commands embedded within it.
- Capability inventory: No executable code, shell access, file-system writes, or network operations are requested or present in the skill, which limits the potential impact of an injection attack.
- Sanitization: No input validation or sanitization is performed on the source material before processing.
Audit Metadata