business-growth-skills
Pass
Audited by Gen Agent Trust Hub on May 3, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes Python CLI tools to process business data. These scripts are strictly local, use the Python standard library, and do not make network calls or execute arbitrary code from the processed data.
- [INDIRECT_PROMPT_INJECTION]: The skill ingests external JSON data (such as customer metrics and RFP requirements). While this represents a potential surface for indirect prompt injection if the source data is poisoned, the risk is mitigated by the deterministic nature of the Python scripts which perform structured parsing and arithmetic analysis without interpreting the data as instructions.
- [EXTERNAL_DOWNLOADS]: The skill suggests the installation of Pandoc, a widely recognized and trusted open-source document converter, via standard system package managers (brew, apt) to facilitate Markdown to DOCX conversion.
Audit Metadata