quality-complaint-8d-report
Pass
Audited by Gen Agent Trust Hub on Jun 20, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill provides a Python runner script (
scripts/run.py) intended for command-line execution to interact with the skill's backend API. - [EXTERNAL_DOWNLOADS]: The
scripts/run.pyscript makes network requests tohttps://ai-skills.aiusing Python'surlliblibrary to execute diagnostic tasks. It also optionally imports thecertifipackage for SSL certificate verification. - [PROMPT_INJECTION]: The skill ingests untrusted data from multiple sources which presents a surface for indirect prompt injection:
- Ingestion points: Untrusted data enters the context through parameters like
complaintCaseTextandcomplaintRecordLink(defined inreferences/form-schema.jsonand processed inscripts/run.py). - Boundary markers: No explicit boundary markers or instructions to ignore embedded commands are present in the core instructions in
SKILL.mdor the agent configuration. - Capability inventory: The skill has network capabilities via
urllib.requestinscripts/run.pyto communicate with the vendor API. - Sanitization: There is no evidence of input validation or sanitization for the provided complaint text or external links.
- Ingestion points: Untrusted data enters the context through parameters like
Audit Metadata