uapi-get-webparse-metadata

Pass

Audited by Gen Agent Trust Hub on Jul 9, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it fetches and processes metadata from user-specified external URLs.
  • Ingestion points: The url parameter defined in references/operations/get-webparse-metadata.md allows the agent to ingest content from arbitrary external web pages.
  • Boundary markers: The skill does not implement boundary markers or instructions that direct the agent to treat the parsed metadata as untrusted data or to ignore embedded instructions.
  • Capability inventory: The skill uses a network operation to fetch remote metadata which is then integrated into the agent's active context.
  • Sanitization: There is no evidence of sanitization or filtering to prevent the agent from interpreting extracted strings (such as page titles or descriptions) as instructional content.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 9, 2026, 06:42 AM
Security Audit — agent-trust-hub — uapi-get-webparse-metadata