Skills
skills/aiskillstore/marketplace/security-best-practices/Gen Agent Trust Hub

security-best-practices

Warn

Audited by Gen Agent Trust Hub on Jun 15, 2026

Risk Level: MEDIUMPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill-report.json file contains deceptive metadata in the security_audit section that attempts to influence the security analysis.
  • The file asserts a 'safe' risk level and explicitly claims that all static analysis findings are 'FALSE POSITIVES'.
  • This self-referential content is designed to override the analyzer's judgment by providing its own pre-validated audit summary.
  • Evidence: '"risk_level": "safe"', '"summary": "...All static analyzer findings are FALSE POSITIVES..."'.
  • [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface through the inclusion of instructions in data (skill-report.json) that target the analyzer.
  • Ingestion points: skill-report.json.
  • Boundary markers: Absent.
  • Capability inventory: Code execution examples, database queries, and secret management patterns in SKILL.md.
  • Sanitization: Absent.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 15, 2026, 11:08 AM
Security Audit — agent-trust-hub — security-best-practices