icp-identification
Pass
Audited by Gen Agent Trust Hub on Apr 10, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it retrieves and processes content from external URLs provided by the user or found via web search in Phase 1.
- Ingestion points: Company URL research in Phase 1 of SKILL.md.
- Boundary markers: Absent; there are no explicit delimiters or instructions to ignore embedded commands in the retrieved data.
- Capability inventory: Uses web research tools and hands off data to several lead-generation and database-searching skills.
- Sanitization: No evidence of sanitization or content validation for retrieved web data.
- [NO_CODE]: The skill package contains only markdown instructions and configuration files, with no executable scripts or binary files provided.
Audit Metadata