afrexai-personal-finance
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: Vulnerability to indirect prompt injection through transaction data ingestion.
- Ingestion points: Daily transaction categorization and weekly spending summaries (SKILL.md).
- Boundary markers: Absent; transaction descriptions are processed as natural language without delimiters or instructions to ignore embedded commands.
- Capability inventory: Writing and reading YAML files in the local
finance/directory to maintain financial state (SKILL.md). - Sanitization: Absent; no methods for escaping or validating transaction content are specified.
Audit Metadata