dynamic-content-personalizer

Pass

Audited by Gen Agent Trust Hub on Jul 6, 2026

Risk Level: SAFE
Full Analysis
  • [PROMPT_INJECTION]: The skill is designed to process external data sources like CSV exports and subscriber lists, which creates a potential surface for indirect prompt injection. However, it specifically instructs the agent to treat these inputs as untrusted and explicitly forbids following any instructions that might be embedded within data fields.
  • [DATA_EXFILTRATION]: While the skill manages subscriber data, it contains robust defensive measures including a 'PII guard' that prevents the agent from echoing or rendering raw personally identifiable information (such as email addresses, phone numbers, or order IDs) in its output. All data handling is confined to local memory paths and recognized marketing platforms.
  • [SAFE]: The skill references established marketing and analytics services (e.g., Klaviyo, HubSpot, Google Analytics) for its intended purpose. No malicious patterns, obfuscation, or unauthorized network behaviors were detected.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 6, 2026, 09:34 AM
Security Audit — agent-trust-hub — dynamic-content-personalizer