geo-content
Pass
Audited by Gen Agent Trust Hub on Mar 21, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: No malicious code, hardcoded credentials, or suspicious remote dependencies were found in the skill metadata or body.
- [PROMPT_INJECTION]: The skill facilitates the ingestion of untrusted external data by instructing the agent to fetch and analyze content from target websites, which establishes a surface for indirect prompt injection.
- Ingestion points: The 'How to Use' section in SKILL.md directs the agent to fetch target pages (Step 1).
- Boundary markers: The skill lacks specific delimiters or instructions to treat fetched content as data rather than instructions.
- Capability inventory: The skill's primary capability is writing a report file (GEO-CONTENT-ANALYSIS.md) based on its findings; it does not request access to system commands or external network exfiltration.
- Sanitization: No validation or sanitization requirements are defined for the content retrieved from external URLs.
Audit Metadata