web-assessment-executor
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill defines a standard workflow for security testing and does not contain any suspicious commands, hardcoded credentials, or obfuscated logic.
- [PROMPT_INJECTION]: Potential surface for Indirect Prompt Injection. Ingestion points: The skill processes external web response data from the target_url during Phase 2. Boundary markers: The instructions do not define delimiters or warnings for the agent to ignore instructions embedded in the target data. Capability inventory: Use of browser automation and HTTP tooling for stateful and deterministic testing. Sanitization: No explicit sanitization or filtering logic is provided for the data processed from external targets. This exposure is typical for web assessment tools and is considered a functional risk rather than a malicious finding.
Audit Metadata