trade-fundamental
Pass
Audited by Gen Agent Trust Hub on May 16, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection by processing untrusted data from external web searches.
- Ingestion points: The skill uses the WebSearch tool to gather various financial metrics from the internet.
- Boundary markers: The instructions lack explicit delimiters or guidance for the agent to ignore instructions that might be embedded within search results.
- Capability inventory: The agent has the ability to read data via WebSearch and write reports to the local file system.
- Sanitization: There is no evidence of sanitization or validation for the data retrieved from external sources before it is used in report generation.
- [NO_CODE]: The skill is composed entirely of natural language instructions and Markdown formatting, without any associated scripts or binary files.
Audit Metadata