ads-linkedin

Pass

Audited by Gen Agent Trust Hub on May 18, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: Indirect Prompt Injection Surface. The skill is designed to ingest and process untrusted external data which could potentially contain malicious instructions.
  • Ingestion points: Processes external data from 'LinkedIn Ads data (Campaign Manager export, Insight Tag status)' as defined in the process steps in SKILL.md.
  • Boundary markers: The instructions lack explicit boundary markers or delimiters to separate instructions from the data being analyzed, nor do they include warnings to ignore embedded instructions in the imported data.
  • Capability inventory: The skill has the capability to write to the file system to generate reports (e.g., 'LINKEDIN-ADS-REPORT.md').
  • Sanitization: No input validation, escaping, or filtering of the external LinkedIn data is specified in the audit process.
Audit Metadata
Risk Level
SAFE
Analyzed
May 18, 2026, 01:33 PM
Security Audit — agent-trust-hub — ads-linkedin