Skills
skills/varnan-tech/opendirectory/pricing-page-psychology-audit/Gen Agent Trust Hub

pricing-page-psychology-audit

Pass

Audited by Gen Agent Trust Hub on May 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes a local Python script scripts/scrape_pricing.py to process the target URL provided by the user to perform its primary function.\n- [EXTERNAL_DOWNLOADS]: The skill fetches external content from user-provided URLs using the requests library to gather pricing page data for analysis.\n- [PROMPT_INJECTION]: The skill processes untrusted data from external websites, creating a potential surface for indirect prompt injection.\n
  • Ingestion points: The all_text section of the output from scripts/scrape_pricing.py is ingested into the agent's context during the evaluation step.\n
  • Boundary markers: The skill uses text headers (e.g., ## FULL PAGE TEXT) and line separators in the script output to delimit the scraped content for the AI.\n
  • Capability inventory: The skill performs local script execution and network requests via the requests library across the scripts/scrape_pricing.py file.\n
  • Sanitization: The script scripts/scrape_pricing.py removes <script>, <style>, <nav>, and <footer> tags from the HTML before passing the content to the AI.
Audit Metadata
Risk Level
SAFE
Analyzed
May 17, 2026, 01:46 PM
Security Audit — agent-trust-hub — pricing-page-psychology-audit