Skills
skills/synapseradio/ai-skills/cite/Gen Agent Trust Hub

cite

Pass

Audited by Gen Agent Trust Hub on May 12, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill is designed to fetch metadata from external paper links (such as arXiv, DOI, or conference URLs) provided by the user to facilitate citation formatting.
  • [PROMPT_INJECTION]: The skill contains an indirect prompt injection attack surface because it ingests data from external websites.
  • Ingestion points: Untrusted data enters the agent context in SKILL.md during the process of fetching the provided URLs.
  • Boundary markers: No explicit delimiters or instructions to ignore embedded commands are present in the instructions.
  • Capability inventory: The skill possesses network access capabilities to retrieve external data.
  • Sanitization: No sanitization or validation logic for the retrieved metadata is described before the information is returned to the user or processed by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
May 12, 2026, 09:09 PM