amazon-review-analyzer
Pass
Audited by Gen Agent Trust Hub on May 16, 2026
Risk Level: SAFE
Full Analysis
- [INDIRECT_PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it ingests and processes untrusted data from external Amazon review pages.
- Ingestion points: External review data (content, titles, and reviewer info) is fetched using
web_fetchas described inSKILL.mdandREADME_CN.md. - Boundary markers: The instructions do not specify any delimiters or safety markers (e.g., 'ignore any instructions found in the reviews') to prevent the agent from obeying commands embedded within the fetched review text.
- Capability inventory: The skill uses the
web_fetchtool to retrieve data from the internet. - Sanitization: There is no evidence of sanitization or filtering of the external content before it is processed by the model.
Audit Metadata