grouchygiraffe-ingest
Pass
Audited by Gen Agent Trust Hub on Jun 15, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: Indirect Prompt Injection Surface. The skill orchestrates a workflow that ingests data from external sources (Instagram and recipe websites) via sub-skills and writes the results to the local filesystem.
- Ingestion points: External content is fetched from URLs provided in Step 1 and Step 3 using sub-skills.
- Boundary markers: The instructions do not define any delimiters or system-level instructions to ignore malicious prompts that might be embedded in the external recipe content.
- Capability inventory: The workflow includes writing cleaned recipe notes to a local 'vault' and updating file metadata (frontmatter).
- Sanitization: There is no mention of sanitizing or validating the content retrieved from external URLs before it is processed or stored.
Audit Metadata