Skills
skills/cognitic-labs/geoskills/geo-audit/Gen Agent Trust Hub

geo-audit

Pass

Audited by Gen Agent Trust Hub on Apr 11, 2026

Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection (Category 8) because it fetches and processes content from arbitrary external websites and third-party platforms.
  • Ingestion points: Target website homepage and subpages, robots.txt, sitemap files, and platform profiles on Wikipedia, Reddit, LinkedIn, and YouTube.
  • Boundary markers: The skill lacks explicit boundary markers or instructions to ignore embedded commands within the fetched HTML/text content.
  • Capability inventory: The skill writes analysis results to local markdown files and instructs the agent to use pandoc for document conversion.
  • Sanitization: No sanitization or safety-filtering of the ingested web content is specified before the data is processed for scoring and reporting.
  • [EXTERNAL_DOWNLOADS]: The skill performs multiple network requests to fetch data from the target domain and well-known services including Wikipedia, Wikidata, LinkedIn, Reddit, YouTube, and Crunchbase for brand entity analysis.
  • [COMMAND_EXECUTION]: Phase 6 of the skill instructions directs the agent to utilize the pandoc utility to convert generated markdown reports into PDF or Word documents upon user request.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 11, 2026, 09:52 PM
Security Audit — agent-trust-hub — geo-audit