uapi-get-webparse-metadata
Pass
Audited by Gen Agent Trust Hub on Jul 9, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it fetches and processes metadata from user-specified external URLs.
- Ingestion points: The
urlparameter defined inreferences/operations/get-webparse-metadata.mdallows the agent to ingest content from arbitrary external web pages. - Boundary markers: The skill does not implement boundary markers or instructions that direct the agent to treat the parsed metadata as untrusted data or to ignore embedded instructions.
- Capability inventory: The skill uses a network operation to fetch remote metadata which is then integrated into the agent's active context.
- Sanitization: There is no evidence of sanitization or filtering to prevent the agent from interpreting extracted strings (such as page titles or descriptions) as instructional content.
Audit Metadata