Skills
skills/alirezarezvani/claude-skills/procurement-optimizer/Gen Agent Trust Hub

procurement-optimizer

Pass

Audited by Gen Agent Trust Hub on May 19, 2026

Risk Level: SAFE
Full Analysis
  • [INDIRECT_PROMPT_INJECTION]: The skill processes untrusted JSON data from external sources to generate Markdown-formatted reports.
  • Ingestion points: Scripts spend_categorizer.py, purchasing_cycle_analyzer.py, and supplier_consolidation.py read user-supplied JSON files via the --input flag.
  • Boundary markers: None. The scripts treat input data as raw fields (e.g., supplier names, descriptions).
  • Capability inventory: Local file system read/write via Path.read_text() and Path.write_text() in all three scripts.
  • Sanitization: Input strings from the JSON data are interpolated directly into Markdown strings without specific escaping, creating a surface for indirect injection if malicious data is included in the spend descriptions.
  • [METADATA_POISONING]: There is a discrepancy between the author name listed in the SKILL.md frontmatter ('claude-code-skills') and the actual author account ('alirezarezvani'). This is a minor metadata inconsistency.
Audit Metadata
Risk Level
SAFE
Analyzed
May 19, 2026, 11:22 AM
Security Audit — agent-trust-hub — procurement-optimizer