osint-methodologies
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill describes a methodology for ingesting data from external APIs (Riksdagen, World Bank, etc.), which represents an indirect prompt injection surface.
- Ingestion points: Data enters the system from Riksdagen API, Election Authority, World Bank Open Data, and Financial Authority (ESV) as defined in SKILL.md.
- Boundary markers: No specific delimiters or 'ignore embedded instructions' warnings are defined for the ingested OSINT content.
- Capability inventory: The methodology involves database operations (referenced as repository saves) and network requests to external APIs.
- Sanitization: The skill lacks explicit sanitization or escaping mechanisms for external content before it is processed.
- [EXTERNAL_DOWNLOADS]: The skill references several external data sources and documentation from official Swedish government entities (riksdagen.se, val.se, esv.se) and international organizations (worldbank.org). These are legitimate sources used for the skill's primary purpose.
- [COMMAND_EXECUTION]: The skill provides SQL query templates for data analysis using static structures on public data schemas.
Audit Metadata