linkfox-wallysmarter-product-detail
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: Potential for Indirect Prompt Injection.\n
- Ingestion points: Product titles and descriptions fetched from the WallySmarter API in
scripts/wallysmarter_product_detail.py.\n - Boundary markers: Absent. No instructions or delimiters are provided to the agent to distinguish between its primary instructions and the external product content.\n
- Capability inventory: The agent has the ability to execute a Python script (
scripts/wallysmarter_product_detail.py) that performs network requests to vendor-controlled APIs.\n - Sanitization: Absent. The skill does not implement any mechanisms to sanitize or validate the external content before it is processed by the agent.
Audit Metadata