legal-advisor
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: Indirect Prompt Injection Surface. The skill is designed to ingest and process untrusted external data, including contracts, policies, and web-retrieved content.
- Ingestion points: Processes data from the local file system using
Read,Glob, andGreptools, and external content viaWebFetchandWebSearchtools. - Boundary markers: The instructions lack explicit boundary markers or directives to ignore instructions embedded within the processed legal documents or web data.
- Capability inventory: The agent possesses powerful capabilities including
Read,Write,Edit,WebFetch, andWebSearch, which could be exploited if an ingested document contains malicious instructions. - Sanitization: No sanitization or validation logic is defined for the external data before it is analyzed by the agent.
Audit Metadata