content-brief-factory
Pass
Audited by Gen Agent Trust Hub on Apr 10, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes local Python scripts to analyze the user's website and scrape community data. Specifically, it runs skills/site-content-catalog/scripts/catalog_content.py, skills/capabilities/review-site-scraper/scripts/scrape_reviews.py, and skills/reddit-post-finder/scripts/search_reddit.py.
- [EXTERNAL_DOWNLOADS]: Communicates with external SEO data providers including SerpAPI, Serper.dev, DataForSEO, and ValueSERP. It also fetches content from third-party URLs using the fetch_webpage tool.
- [PROMPT_INJECTION]: Risk of indirect prompt injection due to processing untrusted data from the web. Ingestion points: Competition ranking pages, Reddit posts, and review sites. Boundary markers: The skill does not implement specific delimiters or instructions to ignore commands within the fetched content. Capability inventory: Ability to execute local scripts and make network requests. Sanitization: No explicit sanitization or filtering of the external content is mentioned.
Audit Metadata