ad-writer
Pass
Audited by Gen Agent Trust Hub on Jul 18, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection because it is instructed to fetch and read content from external landing page URLs provided by the user at runtime. Malicious instructions on those pages could attempt to subvert the agent's behavior.
- Ingestion points: External landing page content (Step 1 in SKILL.md).
- Boundary markers: None explicitly defined in the instructions to separate untrusted web content from the agent's core instructions.
- Capability inventory: The skill has the capability to read local files (
social-context.md) and read external web content via a landing page URL. - Sanitization: There is no explicit sanitization of external content, although the skill includes a 'Compliance pass' (Step 7) designed to validate generated ad copy against platform policies.
Audit Metadata