Skills
skills/duc01226/easyplatform/workflow-e2e-from-recording/Gen Agent Trust Hub

workflow-e2e-from-recording

Pass

Audited by Gen Agent Trust Hub on Apr 10, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill employs high-pressure imperative language ("IMPORTANT", "MUST", "Do NOT skip") intended to override the agent's internal task prioritization and force strict adherence to a specific command sequence.
  • [PROMPT_INJECTION]: The skill creates a surface for indirect prompt injection by ingesting untrusted user input as the primary context for a multi-step workflow without established boundary markers or sanitization.
  • Ingestion points: User prompt is passed as context to the /workflow-start command in SKILL.md.
  • Boundary markers: Absent. The skill does not define delimiters or instructions to ignore embedded commands within the user input.
  • Capability inventory: The workflow includes steps such as /e2e-test and /test, which involve generating and executing Playwright test code, implying file system and shell access.
  • Sanitization: Absent. There is no evidence of validation or escaping for the user-provided context.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 10, 2026, 07:25 AM