privacy-data-security
Pass
Audited by Gen Agent Trust Hub on Mar 16, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits an attack surface for indirect prompt injection by processing untrusted user input while having access to powerful system tools.
- Ingestion points: User-provided descriptions of cybersecurity incidents, data exposure events, and vendor assessments are ingested as part of the operational workflow (SKILL.md).
- Boundary markers: The instructions lack the use of delimiters or explicit warnings to the agent to disregard instructions embedded within the processed user data.
- Capability inventory: The skill allows the agent to use Bash, Read, Write, and Edit tools, which present a risk if the agent is influenced by malicious instructions in the input data.
- Sanitization: There are no documented procedures for sanitizing or validating user input before it is utilized by the agent or its tools.
Audit Metadata