theangry-write-like-vitor-bootstrap

Pass

Audited by Gen Agent Trust Hub on Jul 3, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface because it is designed to ingest and process external, untrusted communication data to influence future agent drafting behavior.
  • Ingestion points: The skill is instructed to read from email, Slack, Telegram, WhatsApp, direct messages, private documents, and transcripts (SKILL.md).
  • Boundary markers: The instructions do not specify the use of data delimiters or 'ignore instructions' warnings for the ingested source material.
  • Capability inventory: The skill has the capability to create or update durable writing-style skill files and profiles (SKILL.md).
  • Sanitization: No explicit sanitization or filtering of the source data to remove potential prompt injection payloads is mentioned.
  • [SAFE]: The skill incorporates several security best practices, including explicit 'Approval Gates' that require human consent before data access and 'Privacy Rules' that forbid the storage of raw private information.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 3, 2026, 05:53 PM
Security Audit — agent-trust-hub — theangry-write-like-vitor-bootstrap