ai-content-strategy

Pass

Audited by Gen Agent Trust Hub on Jun 13, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: Indirect prompt injection surface identified.
  • Ingestion points: The skill accepts external content through the materialUrl, materialFile, and materialText parameters defined in references/form-schema.json and SKILL.md.
  • Boundary markers: The skill lacks explicit boundary markers or instructions to the model to disregard potentially malicious commands embedded within the provided materials (e.g., in a fetched URL or pasted text).
  • Capability inventory: The skill has the capability to transmit processed data to an external API endpoint (https://ai-skills.ai/api/execute) via the included scripts/run.py script.
  • Sanitization: No local sanitization, escaping, or filtering of the input data is observed in the skill's scripts; the tool relies on the safety protocols of the downstream API service.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 13, 2026, 03:30 AM
Security Audit — agent-trust-hub — ai-content-strategy