ai-content-strategy
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: Indirect prompt injection surface identified.
- Ingestion points: The skill accepts external content through the
materialUrl,materialFile, andmaterialTextparameters defined inreferences/form-schema.jsonandSKILL.md. - Boundary markers: The skill lacks explicit boundary markers or instructions to the model to disregard potentially malicious commands embedded within the provided materials (e.g., in a fetched URL or pasted text).
- Capability inventory: The skill has the capability to transmit processed data to an external API endpoint (
https://ai-skills.ai/api/execute) via the includedscripts/run.pyscript. - Sanitization: No local sanitization, escaping, or filtering of the input data is observed in the skill's scripts; the tool relies on the safety protocols of the downstream API service.
Audit Metadata