jobs-to-be-done
Pass
Audited by Gen Agent Trust Hub on Mar 16, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: No security issues detected. The skill contains only instructional text and does not include any scripts, executables, or network requests.
- [PROMPT_INJECTION]: The skill instructs the agent to read user-provided interview data and product context, which creates a surface for indirect prompt injection. However, there is no exploit path as the skill possesses no dangerous capabilities. Ingestion points: Reading user-provided files as described in SKILL.md. Boundary markers: None specified. Capability inventory: No file system writing, network access, or command execution tools are defined. Sanitization: No input validation logic is present.
Audit Metadata