ai-agent-commercial-operations

Pass

Audited by Gen Agent Trust Hub on Jun 15, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill is primarily composed of architectural documentation, policy guidelines, and code templates for commercial operations. No malicious code, exfiltration patterns, or unauthorized access attempts were detected.
  • [PROMPT_INJECTION]: The skill defines workflows for generating customer communications (e.g., in references/ai-agent-abandonment-and-refund-policy/references/refund-execution.md) that interpolate task summaries and failure reasons. This constitutes an indirect prompt injection surface, as untrusted data from agent logs could potentially influence outbound email content. This is noted as a low-risk architectural consideration for skills handling external communications.
  • [DATA_EXFILTRATION]: The provided code snippets include logic for interacting with the Stripe API to process refunds and manage customer balances. This functionality is consistent with the stated purpose of commercial operations and targets a well-known service domain.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 15, 2026, 04:57 PM
Security Audit — agent-trust-hub — ai-agent-commercial-operations