amazon-idq-pro-audit
Pass
Audited by Gen Agent Trust Hub on Jun 17, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill utilizes the Bright Data MCP tool to retrieve live product information from Amazon's marketplace. This is a legitimate and documented functionality necessary for listing audits.
- [COMMAND_EXECUTION]: The skill instructs the agent to perform HTTP HEAD requests to verify image resolutions. This is a standard network verification step and is directed at Amazon's media servers.
- [PROMPT_INJECTION]: The skill processes untrusted external data fetched from Amazon listings. This constitutes an indirect prompt injection surface; however, the skill's instructions require the agent to perform specific validation and analysis (e.g., character counts, regex-based policy checks) on this data, which significantly mitigates the risk of the data being interpreted as instructions.
- [DATA_EXFILTRATION]: No evidence of unauthorized data transmission was found. Network operations are limited to the intended data sources and media verification.
- [SAFE]: The skill provides clear instructions for user interaction, accurately describes its capabilities and limitations, and uses established tool-use patterns.
Audit Metadata