sop-readability-check
Pass
Audited by Gen Agent Trust Hub on Jun 20, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface by processing untrusted external data.
- Ingestion points: User-provided text in
sopProcedureText, uploaded files insopDocumentFile, and external content fromsopReferenceLinkdefined inreferences/form-schema.json. - Boundary markers: No explicit boundary markers or 'ignore' instructions were found in the provided configuration to delimit untrusted content.
- Capability inventory: The skill uses
scripts/run.pyto transmit processed data to an external API (https://ai-skills.ai/api/execute). - Sanitization: No evidence of input sanitization or validation was found in the client-side code; processing is likely handled by the remote API.
- [SAFE]: The network communication identified in
scripts/run.pytargets the vendor's own infrastructure (ai-skills.ai) and is required for the skill's primary function.
Audit Metadata