closed-loop-analytics-upgrade

Pass

Audited by Gen Agent Trust Hub on Jun 13, 2026

Risk Level: SAFENO_CODE
Full Analysis
  • [SAFE]: No malicious patterns, command execution, or data exfiltration attempts were detected. The skill instructions focus on standard marketing analytics workflows.
  • [NO_CODE]: The skill consists entirely of markdown instructions and templates. It does not contain any executable scripts, shell commands, or external code dependencies.
  • [INDIRECT_PROMPT_INJECTION]: The skill defines a workflow for ingesting untrusted external data to modify other agent components.
  • Ingestion points: Processes "usage logs, recommendations, shipped changes, platform analytics, owner feedback, and cost/runtime data" (SKILL.md).
  • Boundary markers: Absent; no specific delimiters or warnings for the agent to ignore instructions embedded in the analytics data are provided.
  • Capability inventory: The skill itself has no executable capabilities, but it instructs the agent to output a "candidate patch to a prompt, skill, connector, brief template, scoring rubric, or next-action rule" (SKILL.md).
  • Sanitization: Absent; the skill does not specify any validation or filtering of the ingested data before it is used to generate patches.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 13, 2026, 10:34 AM
Security Audit — agent-trust-hub — closed-loop-analytics-upgrade