Skills
skills/spartan-stratos/spartan-ai-toolkit/idea-validation/Gen Agent Trust Hub

idea-validation

Pass

Audited by Gen Agent Trust Hub on Apr 9, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection due to its core functionality of ingesting untrusted data from the web.
  • Ingestion points: The skill uses WebSearch and WebFetch to gather data from Reddit, forums, and customer reviews as specified in the 'Problem Check' and 'Competitor Check' sections of SKILL.md.
  • Boundary markers: There are no instructions or XML-style tags used to delineate external content from the agent's instructions, nor are there commands to ignore instructions found within the fetched data.
  • Capability inventory: The skill uses WebSearch, WebFetch, and Read tools. It accesses files in the /frameworks/ directory and is instructed to save reports to the 03-validation/ directory.
  • Sanitization: The skill does not perform any sanitization or validation on the content retrieved via web tools before processing it.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 9, 2026, 01:06 PM