Skills
skills/orcaqubits/agentic-commerce-skills-plugins/ucp-fulfillment/Gen Agent Trust Hub

ucp-fulfillment

Pass

Audited by Gen Agent Trust Hub on Mar 31, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [SAFE]: No malicious patterns, obfuscation, or unauthorized access attempts were detected in the skill instructions.
  • [EXTERNAL_DOWNLOADS]: The skill identifies a GitHub repository (Universal-Commerce-Protocol/samples) as a reference source for implementation details. This targets the official repository associated with the protocol.
  • [PROMPT_INJECTION]: The skill directs the agent to fetch live specifications from an external domain (ucp.dev). This establishes a surface for indirect prompt injection, common in skills that process web content.
  • Ingestion points: Specification fetching via WebFetch in SKILL.md.
  • Boundary markers: None present.
  • Capability inventory: The skill has access to Bash, Write, and Edit tools as defined in the frontmatter.
  • Sanitization: No explicit sanitization of fetched content is performed.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 31, 2026, 06:09 AM