medusa-catalog

Pass

Audited by Gen Agent Trust Hub on Jun 29, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill fetches documentation from Medusa's official documentation site (docs.medusajs.com) to guide catalog management tasks.
  • [INDIRECT_PROMPT_INJECTION]: The skill incorporates an attack surface for indirect prompt injection by design, as it fetches external documentation to guide its behavior.
  • Ingestion points: WebSearch and WebFetch target docs.medusajs.com (SKILL.md).
  • Boundary markers: None present.
  • Capability inventory: Bash, Write, Edit, Read, Grep, Glob, WebSearch, WebFetch (SKILL.md).
  • Sanitization: None present.
  • Note: This surface is considered safe as the data source is a well-known official documentation site.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 29, 2026, 02:51 PM
Security Audit — agent-trust-hub — medusa-catalog