kb-authoring
Pass
Audited by Gen Agent Trust Hub on Apr 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: Potential Indirect Prompt Injection surface via external data ingestion.
- Ingestion points: The skill processes "resolved support cases" to derive article content.
- Boundary markers: Absent. There are no instructions to use delimiters or ignore instructions embedded within the ticket data.
- Capability inventory: No high-risk capabilities like file system writing, network requests, or shell execution are present in the skill instructions.
- Sanitization: Absent. The instructions do not include steps to sanitize, escape, or validate the content of support cases before processing.
Audit Metadata