closed-loop-analytics-upgrade
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE]: No malicious patterns, command execution, or data exfiltration attempts were detected. The skill instructions focus on standard marketing analytics workflows.
- [NO_CODE]: The skill consists entirely of markdown instructions and templates. It does not contain any executable scripts, shell commands, or external code dependencies.
- [INDIRECT_PROMPT_INJECTION]: The skill defines a workflow for ingesting untrusted external data to modify other agent components.
- Ingestion points: Processes "usage logs, recommendations, shipped changes, platform analytics, owner feedback, and cost/runtime data" (SKILL.md).
- Boundary markers: Absent; no specific delimiters or warnings for the agent to ignore instructions embedded in the analytics data are provided.
- Capability inventory: The skill itself has no executable capabilities, but it instructs the agent to output a "candidate patch to a prompt, skill, connector, brief template, scoring rubric, or next-action rule" (SKILL.md).
- Sanitization: Absent; the skill does not specify any validation or filtering of the ingested data before it is used to generate patches.
Audit Metadata