Skills
skills/jeremylongshore/claude-code-plugins-plus-skills/attio-core-workflow-a/Gen Agent Trust Hub

attio-core-workflow-a

Pass

Audited by Gen Agent Trust Hub on May 19, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill processes external data from the Attio CRM API, presenting a surface for indirect prompt injection where instructions hidden in CRM records could influence agent behavior.
  • Ingestion points: Data is brought into the agent context via record retrieval and search operations described in SKILL.md.
  • Boundary markers: There are no instructions for using delimiters or warnings to isolate CRM record content from the agent's primary instructions.
  • Capability inventory: The skill environment includes access to powerful tools such as Bash, Write, and Edit.
  • Sanitization: No sanitization or validation of the content retrieved from the CRM is mentioned.
Audit Metadata
Risk Level
SAFE
Analyzed
May 19, 2026, 11:41 PM
Security Audit — agent-trust-hub — attio-core-workflow-a