legal-case-analysis
Pass
Audited by Gen Agent Trust Hub on Jun 15, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted external data (legal documents, contracts, and chat logs) which presents an attack surface for indirect prompt injection.\n
- Ingestion points:
SKILL.mdidentifies inputs such as client statements, contracts, and chat logs.\n - Boundary markers:
SKILL.mdandreferences/workflow.mdcontain explicit instructions to distinguish evidence from claims and prohibit the invention of missing information.\n - Capability inventory: The skill lacks capabilities for command execution, network access, or file system modification.\n
- Sanitization: Input data is not explicitly sanitized, but the workflow requires mapping facts to structured legal elements.\n- [SAFE]: No malicious behavior, obfuscation, or credential exposure was found. The skill consists entirely of instructional markdown files and templates following professional legal standards.
Audit Metadata