Skills
skills/jubscodes/get-shit-pretty/brand-research/Gen Agent Trust Hub

brand-research

Pass

Audited by Gen Agent Trust Hub on Mar 23, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: Indirect Prompt Injection Surface.
  • Ingestion points: The skill reads user-defined or project-specific content from .design/branding/{brand}/BRIEF.md, audit/evolution-map.md, and audit/market-fit.md.
  • Boundary markers: No explicit delimiters or instruction-isolation markers are used when passing the content of these files to the gsp-researcher sub-agent.
  • Capability inventory: The skill possesses the Write, Bash, Agent, WebSearch, and WebFetch tools, allowing it to modify files and access the internet.
  • Sanitization: The skill lacks explicit validation or sanitization of the data retrieved from the local branding files before it is interpolated into the context for the research agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 23, 2026, 07:13 PM