legal-case-analysis

Pass

Audited by Gen Agent Trust Hub on Jun 15, 2026

Risk Level: SAFENO_CODE
Full Analysis
  • [PROMPT_INJECTION]: The skill processes untrusted external data (legal documents, contracts, and chat logs) which presents an attack surface for indirect prompt injection.\n
  • Ingestion points: SKILL.md identifies inputs such as client statements, contracts, and chat logs.\n
  • Boundary markers: SKILL.md and references/workflow.md contain explicit instructions to distinguish evidence from claims and prohibit the invention of missing information.\n
  • Capability inventory: The skill lacks capabilities for command execution, network access, or file system modification.\n
  • Sanitization: Input data is not explicitly sanitized, but the workflow requires mapping facts to structured legal elements.\n- [SAFE]: No malicious behavior, obfuscation, or credential exposure was found. The skill consists entirely of instructional markdown files and templates following professional legal standards.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 15, 2026, 08:33 AM
Security Audit — agent-trust-hub — legal-case-analysis