scandinavia-transit
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill facilitates access to official public transit information via well-known national APIs for Norway (Entur), Sweden (ResRobot), and Denmark (Rejseplanen). No hardcoded credentials, malicious scripts, or obfuscation were detected.
- [PROMPT_INJECTION]: The skill documentation describes an indirect prompt injection surface (Category 8) by instructing the agent to process data from external network sources. 1. Ingestion points: api.entur.io, api.resrobot.se, and www.rejseplanen.dk within SKILL.md. 2. Boundary markers: The instructions do not define boundary markers or provide specific guidance to the agent to disregard potential instructions embedded in the API responses. 3. Capability inventory: The skill enables the agent to execute network requests via curl and process the output with jq in the shell environment. 4. Sanitization: There is no evidence of sanitization or validation logic to verify the content received from the APIs before it is incorporated into the agent's context.
Audit Metadata