ads-linkedin
Pass
Audited by Gen Agent Trust Hub on May 18, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: Indirect Prompt Injection Surface. The skill is designed to ingest and process untrusted external data which could potentially contain malicious instructions.
- Ingestion points: Processes external data from 'LinkedIn Ads data (Campaign Manager export, Insight Tag status)' as defined in the process steps in SKILL.md.
- Boundary markers: The instructions lack explicit boundary markers or delimiters to separate instructions from the data being analyzed, nor do they include warnings to ignore embedded instructions in the imported data.
- Capability inventory: The skill has the capability to write to the file system to generate reports (e.g., 'LINKEDIN-ADS-REPORT.md').
- Sanitization: No input validation, escaping, or filtering of the external LinkedIn data is specified in the audit process.
Audit Metadata