hubspot-search-deals
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill utilizes local scripts for HubSpot CRM operations, which is standard for this type of integration.
- [PROMPT_INJECTION] (SAFE): While the skill processes external data from HubSpot, which is a potential surface for indirect prompt injection, it is a standard data-processing flow with no specific malicious patterns detected. 1. Ingestion points: search_deals.py results. 2. Boundary markers: Absent. 3. Capability inventory: Local script execution via python. 4. Sanitization: Absent.
Audit Metadata