pt-web-application-assessment
Pass
Audited by Gen Agent Trust Hub on Apr 3, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [NO_CODE]: The skill consists entirely of markdown documentation and instructions. It does not contain any executable scripts, libraries, or command-line logic.\n- [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection (Category 8) as it requires processing untrusted data from web applications and APIs.\n
- Ingestion points: Web endpoints, parameters, and API schemas (SKILL.md).\n
- Boundary markers: Absent.\n
- Capability inventory: Implied use of agent tools for web/API communication and automated testing.\n
- Sanitization: None mentioned for processing external tool outputs.\n- [SAFE]: No malicious patterns, obfuscation, or unauthorized access attempts were identified. The skill focuses on legitimate security assessment workflows and includes explicit reminders to respect authorization and rate limits.
Audit Metadata