teardown
Pass
Audited by Gen Agent Trust Hub on Mar 30, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE]: The skill consists entirely of natural language instructions (markdown) and contains no executable scripts, shell commands, or binaries.
- [SAFE]: No hardcoded credentials, sensitive file paths, or data exfiltration patterns were detected.
- [SAFE]: The skill does not include any remote code execution or external package installations.
- [PROMPT_INJECTION]: The skill demonstrates an attack surface for indirect prompt injection as it fetches and processes untrusted data from external URLs (Phase 1).
- Ingestion points: External URLs, product descriptions, and screenshots (SKILL.md).
- Boundary markers: Absent; the skill does not define specific delimiters to isolate external content from instructions.
- Capability inventory: The skill suggests applying changes to a user's codebase (Phase 4), which implies the use of file-writing tools if the agent environment provides them.
- Sanitization: Absent; there are no instructions to sanitize or validate the content retrieved from external sources.
Audit Metadata