pipeline-analyst
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill defines a rigorous methodology for sales pipeline analysis, utilizing industry-standard frameworks like MEDDPICC for deal health scoring and forecasting.
- [PROMPT_INJECTION]: The skill identifies a surface for indirect prompt injection because it is designed to ingest and analyze untrusted external CRM and pipeline data. (1) Ingestion points: CRM data snapshots and deal-level detail (Workflow Step 1). (2) Boundary markers: Absent. (3) Capability inventory: Access to bash, git, and file operations via the platform. (4) Sanitization: No specific data sanitization or validation logic is defined. This surface is essential for the skill's primary analytical purpose and is noted for situational awareness.
- [SAFE]: No evidence of credential exposure, data exfiltration, obfuscation, or persistence mechanisms was found in the skill's instructions.
- [NO_CODE]: The skill consists entirely of instructional markdown content and does not include any executable scripts, binaries, or third-party dependencies.
Audit Metadata