fetch
Pass
Audited by Gen Agent Trust Hub on May 9, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface as it is designed to ingest and process data from untrusted external sources.
- Ingestion points: External content is retrieved from public URLs, documentation pages, and articles via the fetch capability described in
SKILL.md. - Boundary markers: The instructions do not specify any delimiters or protective prompts to help the agent distinguish between its core instructions and potentially adversarial instructions embedded in the fetched content.
- Capability inventory: The skill enables the agent to read external web content and use it to formulate direct answers to users.
- Sanitization: There is no evidence of sanitization, filtering, or validation of the external content before it is processed by the agent.
Audit Metadata