page-import
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- PROMPT_INJECTION (LOW): Potential for Indirect Prompt Injection. The skill is designed to scrape arbitrary external URLs and process the resulting HTML content. Malicious instructions embedded in a target webpage (e.g., within hidden HTML tags or comments) could influence the agent during the analysis or generation steps.
- Ingestion points: The target URL content is scraped and saved into
cleaned.htmlfor further processing. - Boundary markers: No specific delimiters or "ignore instructions" warnings are defined for the agent when processing the scraped content.
- Capability inventory: Includes file writing (
generate-import-html) and visual verification via a local dev server (preview-import). - Sanitization: No explicit sanitization or filtering of the scraped HTML is mentioned prior to analysis.
- EXTERNAL_DOWNLOADS (SAFE): The skill intentionally downloads content from external URLs as part of its primary scraping function. While this involves network operations, it is consistent with the stated purpose of the skill.
Audit Metadata