Skills
skills/firecrawl/firecrawl-agent/competitor-analysis/Gen Agent Trust Hub

competitor-analysis

Pass

Audited by Gen Agent Trust Hub on Apr 28, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it ingests and processes content from external, attacker-controllable websites during the research process.
  • Ingestion points: Scrapes content from competitor homepages, pricing pages, and documentation (SKILL.md).
  • Boundary markers: Absent. The instructions do not specify the use of delimiters or warnings to ignore instructions embedded within the scraped data.
  • Capability inventory: The skill uses the spawnAgents platform capability to delegate tasks to worker agents for parallel processing.
  • Sanitization: Absent. There are no instructions for validating, filtering, or escaping the content scraped from the web before it is normalized into the final JSON output.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 28, 2026, 04:35 PM