Skills
skills/orcaqubits/agentic-commerce-skills-plugins/medusa-customers/Gen Agent Trust Hub

medusa-customers

Pass

Audited by Gen Agent Trust Hub on Mar 31, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [SAFE]: The skill fetches documentation from Medusa's official documentation site (docs.medusajs.com), which is a well-known and trusted technology service.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection due to its reliance on external web content.
  • Ingestion points: Uses WebSearch and WebFetch tools to retrieve live documentation from docs.medusajs.com and general web results (SKILL.md).
  • Boundary markers: Absent. There are no instructions or delimiters defined to help the agent distinguish between the skill's instructions and potentially malicious commands embedded in the fetched documentation.
  • Capability inventory: The skill allows high-privilege tools including Bash, Write, and Edit (SKILL.md).
  • Sanitization: Absent. No validation or filtering is specified for the content retrieved from external sources.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 31, 2026, 06:11 AM