Skills
skills/unblocked/skills/unblocked-context-get-urls/Gen Agent Trust Hub

unblocked-context-get-urls

Pass

Audited by Gen Agent Trust Hub on Apr 29, 2026

Risk Level: SAFE
Full Analysis
  • [INDIRECT_PROMPT_INJECTION]: The skill represents a surface for indirect prompt injection because it is designed to fetch and process content from arbitrary external URLs (web pages, PRs, Jira tickets, etc.).
  • Ingestion points: Data enters the agent's context through the output of the unblocked context-get-urls command in SKILL.md.
  • Boundary markers: The instructions do not define specific delimiters or instructions for the agent to ignore potential malicious content embedded in the fetched data.
  • Capability inventory: The skill enables the agent to read and process external content for summarization or analysis.
  • Sanitization: No explicit sanitization or validation of the fetched content is described in the skill's instructions.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 29, 2026, 04:58 PM