short-form-research
Pass
Audited by Gen Agent Trust Hub on May 14, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill contains a vulnerability surface for indirect prompt injection due to its core function of processing untrusted web content.
- Ingestion points: Untrusted content, including video captions, verbal opening lines, and text overlays, is ingested by
agents/platform-scout-agent.mdusing theWebFetchtool. - Boundary markers: Absent. The instructions do not define clear boundaries or provide explicit directives for the agent to ignore potentially malicious instructions embedded in the fetched data.
- Capability inventory: According to the
SKILL.mdmanifest, the agent environment has access to powerful tools includingBash,Write,WebSearch, andWebFetch. - Sanitization: Although
agents/critic-agent.mdenforces a quality gate for citations and sample sizes, there is no evidence of sanitization or filtering logic designed to mitigate the execution of instructions contained within the analyzed web content.
Audit Metadata