Skills
skills/efesto-cloud/skills/storyboard-slides/Gen Agent Trust Hub

storyboard-slides

Pass

Audited by Gen Agent Trust Hub on Apr 27, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection through the ingestion of untrusted external content.
  • Ingestion points: The skill uses WebSearch and WebFetch to pull data from external URLs and reads user-provided links or files during the research phase.
  • Boundary markers: The instructions lack explicit boundary markers or delimiters for external content and do not include directives for the agent to ignore instructions embedded within retrieved data.
  • Capability inventory: The agent is instructed to write files including research-dossier.md and slide-outline.md based on external research, which could lead to malicious instructions being persisted in the project directory.
  • Sanitization: No sanitization, escaping, or validation mechanisms are defined for the content retrieved from external web sources.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 27, 2026, 04:41 PM