reasoning
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill consists entirely of documentation and a Python code example illustrating prompting techniques. No indicators of data exfiltration, malicious intent, or unauthorized access were found.
- [PROMPT_INJECTION]: The implementation pattern provided in
SKILL.mdforchain_of_thought_promptuses direct string interpolation of thequestionvariable into the prompt template. This creates a surface for indirect prompt injection where untrusted data could influence the agent's behavior, although this is a standard pedagogical example for Chain-of-Thought reasoning. - Ingestion points:
questionargument in the Python functionchain_of_thought_prompt(SKILL.md) - Boundary markers: Absent in the example code
- Capability inventory:
llm.generatecall - Sanitization: None provided in the snippet
Audit Metadata