page-import
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface as it ingests untrusted data from external URLs to guide structural analysis and authoring decisions. This surface is inherent to the primary function of website content migration.
- Ingestion points: Scraped content (cleaned.html) from the scrape-webpage sub-skill.
- Boundary markers: No explicit delimiters or instructions to ignore embedded commands are specified in the orchestrator workflow.
- Capability inventory: The workflow includes writing HTML files to the local file system (generate-import-html) and launching a local development server (preview-import).
- Sanitization: The orchestrator does not specify sanitization or validation of the external content before processing.
Audit Metadata