competitor-messaging-analysis
Pass
Audited by Gen Agent Trust Hub on Apr 25, 2026
Risk Level: SAFENO_CODEPROMPT_INJECTION
Full Analysis
- [SAFE]: Thorough analysis of the skill instructions, workflow, and reference documents revealed no malicious patterns or security risks. The skill is designed for information gathering and synthesis within a marketing context.
- [NO_CODE]: The skill consists entirely of instructional markdown files and configuration metadata. It does not contain any Python or Node.js scripts, binaries, or references to external packages or remote scripts.
- [PROMPT_INJECTION]: The skill involves processing content from external competitor websites, which is an indirect prompt injection surface. Ingestion points: User-provided URLs (SKILL.md). Boundary markers: Absent. Capability inventory: Uses Read and Write tools. Sanitization: Absent. This finding is assessed as safe as the ingestion is core to the primary skill purpose and no instructions to bypass safety guidelines were found.
Audit Metadata