commerce-morning-brief
Pass
Audited by Gen Agent Trust Hub on Jun 22, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits an attack surface for indirect prompt injection due to its handling of untrusted external data inputs.
- Ingestion points: The skill reads data from various sources including commerce MCP connectors, user-uploaded CSV/Excel spreadsheets, and screenshots of dashboards as described in the '데이터 소스' section of SKILL.md.
- Boundary markers: The instructions do not specify any delimiters or safety prompts to prevent the agent from executing instructions potentially hidden within the processed commerce data (e.g., in customer inquiries or order notes).
- Capability inventory: The skill has the ability to write information to the local file system in the form of .md briefing files.
- Sanitization: No sanitization or verification steps are defined for the data extracted from external files or images before it is used to generate the final summary.
Audit Metadata