content-calendar-codex
Pass
Audited by Gen Agent Trust Hub on Jun 21, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [NO_CODE]: The skill consists entirely of markdown instructions and YAML configuration. It does not include any executable scripts, binary files, or external dependencies.
- [PROMPT_INJECTION]: The skill is designed to process data from various local files in the context directory (e.g., brand-style.md, best-performers.md) and write the results to content-calendar.md. While this creates a surface for indirect prompt injection, it is the primary purpose of the skill.
- Ingestion points: Reads multiple files from the context/ directory including brand-style.md and compliance-rules.md.
- Boundary markers: The instructions do not specify delimiters or system-level warnings to distinguish between instructions and the data being processed.
- Capability inventory: The skill utilizes file reading and writing within the restricted context directory.
- Sanitization: No validation or sanitization is performed on the ingested markdown content.
Audit Metadata