company-deep-analysis

Pass

Audited by Gen Agent Trust Hub on Jun 29, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection. It retrieves data from the internet via web_search and web_fetch to generate financial reports. If the retrieved web content contains malicious instructions, the agent may follow them, potentially biasing the analysis or performing unintended actions. Ingestion points: web_search and web_fetch are used in SKILL.md to collect company data and news. Boundary markers: The instructions do not provide boundary markers or directives to ignore instructions embedded in the retrieved data. Capability inventory: The skill is designed to synthesize data into reports. Although SKILL.md explicitly instructs the agent not to write files, the provided skill package includes an output/ directory with generated Markdown reports, indicating file writing capabilities have been exercised. Sanitization: No sanitization or filtering of external content is present.
  • [EXTERNAL_DOWNLOADS]: The skill uses web_fetch to retrieve content from arbitrary URLs and web_search for broader information gathering. This functionality involves processing unverified external data.
  • [COMMAND_EXECUTION]: The skill invokes external tools like finx gildata-aidata and asset-service using command-line syntax to access professional financial databases.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 29, 2026, 06:41 AM
Security Audit — agent-trust-hub — company-deep-analysis