multi-document-summarization
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, obfuscation, or unauthorized access attempts were detected during the analysis. The skill is entirely text-based and instructional.
- [DATA_EXFILTRATION]: No network calls or data transmission patterns were found. The instructions focus on processing documents locally or via provided links without exfiltrating content.
- [CREDENTIALS_UNSAFE]: No hardcoded credentials, API keys, or access to sensitive system file paths (e.g., .ssh, .env) were found.
- [COMMAND_EXECUTION]: The skill does not contain any shell commands, subprocess calls, or privilege escalation attempts. It relies on natural language reasoning.
- [PROMPT_INJECTION]: The skill processes untrusted external documents, which is a surface for indirect prompt injection. However, the workflow includes specific steps for conflict identification and objective extraction (Step 6 and Step 9), which serves as a procedural mitigation. Evidence: Ingestion points: Multi-source documents (SKILL.md); Boundary markers: Implicit in analysis framework; Capability inventory: Summarization and comparison; Sanitization: Explicit requirement to distinguish 'document statement' from 'inference'.
Audit Metadata