Meeting Scheduler
Pass
Audited by Gen Agent Trust Hub on Mar 19, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE]: No malicious patterns, obfuscation, or suspicious instructions were detected in the skill description. The workflow focuses on legitimate calendar management tasks.
- [NO_CODE]: The provided file (SKILL.md) contains documentation and workflow logic but does not include any implementation scripts (Python, Node.js), binaries, or configuration files that execute code.
- [PROMPT_INJECTION]: The skill identifies a potential surface for indirect prompt injection because it processes untrusted data from external sources (such as RSVP responses and participant meeting details). However, there are no instructions present in the skill that attempt to bypass safety filters or override system behavior.
- Ingestion points: User requests, RSVP responses from participants, and calendar event descriptions.
- Boundary markers: Not mentioned in the workflow.
- Capability inventory: Calendar API interactions (Google, Microsoft, Calendly) and email dispatch.
- Sanitization: Not explicitly defined in the workflow.
Audit Metadata