privacy-policy
Pass
Audited by Gen Agent Trust Hub on Jun 18, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection because it ingests untrusted data from the user's project directory during its analysis phase.\n
- Ingestion points: The skill uses
GlobandGreptools to scan project files including**/privacy*.md,**/terms*.md,**/eula*.md, and various source code files to identify SDK usage and permission descriptions inInfo.plist.\n - Boundary markers: There are no explicit delimiters or specific instructions for the agent to ignore or isolate instructions that may be embedded within the read files.\n
- Capability inventory: The skill has the ability to read, write, and edit local files using
Read,Write,Edit,Glob, andGreptools, allowing it to modify the project based on the analyzed data.\n - Sanitization: Extracted content is not sanitized or validated before being incorporated into the final legal documents generated by the skill.
Audit Metadata