cross-source-verify
Pass
Audited by Gen Agent Trust Hub on Jun 18, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill is designed to ingest and synthesize data from various external and untrusted sources, including web aggregators and third-party databases. This creates a surface for indirect prompt injection where malicious instructions embedded in external data could attempt to influence the agent's behavior during the synthesis process.
- Ingestion points: The skill explicitly gathers data from sources like checko, rusprofile, list-org, and general web results in SKILL.md.
- Boundary markers: There are no technical boundary markers or specific escaping mechanisms defined to isolate untrusted data from the agent's instructions.
- Capability inventory: While the skill itself contains no executable code (scripts), it is a logic core intended to be used by agents with the capability to perform web searches and file reads.
- Sanitization: No specific data sanitization or filtering logic is described beyond logical de-duplication and confidence scoring.
Audit Metadata