sales-theresanaiforthat
Pass
Audited by Gen Agent Trust Hub on Apr 20, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill implements a self-improvement mechanism through the
references/learnings.mdfile. - Ingestion points: The agent is instructed to read
references/learnings.mdat the start of every invocation to gain context from previous sessions. - Boundary markers: No delimiters or protective instructions are present to prevent the agent from obeying instructions that might be maliciously injected into the learnings file.
- Capability inventory: The skill provides guidance on executing shell commands (
npx) and interacting with an external search API. - Sanitization: No validation or sanitization is performed on the content appended to or read from the learnings file.
- [COMMAND_EXECUTION]: The
SKILL.mdfile contains instructions for the user to runnpx skills add sales-skills/salesto install additional tools. These commands are associated with the vendor 'sales-skills' and align with the skill's purpose for managing sales-related directory launches.
Audit Metadata