Skills
skills/oimiragieo/agent-studio/feedback-analysis/Gen Agent Trust Hub

feedback-analysis

Pass

Audited by Gen Agent Trust Hub on May 10, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [INDIRECT_PROMPT_INJECTION]: The skill architecture is susceptible to indirect prompt injection due to its handling of external customer feedback data.\n
  • Ingestion points: Raw feedback text enters the agent's context through the feedbackItems array defined in schemas/input.schema.json.\n
  • Boundary markers: Absent. The instructions in SKILL.md do not implement or mandate the use of delimiters or specific instructions to disregard commands embedded within the feedback text.\n
  • Capability inventory: The skill is granted access to a powerful toolset including Bash, Write, Read, WebSearch, and WebFetch, as specified in the SKILL.md frontmatter.\n
  • Sanitization: Absent. No sanitization, filtering, or validation of the textual content is performed by the pre-execute.cjs hook or the processing logic.
Audit Metadata
Risk Level
SAFE
Analyzed
May 10, 2026, 01:54 PM
Security Audit — agent-trust-hub — feedback-analysis