comparison-post-writer
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface by ingesting untrusted data from external search results.
- Ingestion points: Research data gathered via
web_searchfrom third-party sites like G2, Capterra, and Reddit during the identification and research phases (Step 1 and Step 2). - Boundary markers: The instructions do not define boundary markers or explicit instructions for the agent to ignore commands that may be embedded within the search tool's output.
- Capability inventory: The skill's capabilities are limited to text generation and structured content formatting; it does not possess dangerous capabilities such as file system access, command execution, or unauthorized network data exfiltration.
- Sanitization: No mechanisms for sanitizing or validating the content retrieved from external web sources are specified before the data is used in the article generation process.
Audit Metadata