whatsapp-processing
Pass
Audited by Gen Agent Trust Hub on Apr 9, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill processes external message content, which presents a surface for indirect prompt injection. Mitigation is built into the workflow through structured data headers and mandatory human review for sensitive communications. 1. Ingestion points: Message files in the /Needs_Action/ folder. 2. Boundary markers: YAML frontmatter. 3. Capability inventory: File system access via read, write, and search tools. 4. Sanitization: Human approval required for critical and financial drafts.
- [DATA_EXFILTRATION]: No exfiltration risks were identified. The skill operates on local message files and does not utilize any network-enabled tools or libraries.
Audit Metadata