listicle-generator
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface as it ingests untrusted data from external sources during its research phase.
- Ingestion points: Product data is fetched via
web_searchfrom external sites such as G2, Capterra, and TrustRadius as described in the research workflow inSKILL.md. - Boundary markers: Absent. The instructions do not explicitly mandate the use of delimiters or 'ignore' instructions for data retrieved from search results.
- Capability inventory: The skill lacks high-risk capabilities; it does not perform file system writes, local code execution, or sensitive network operations.
- Sanitization: No explicit sanitization or validation of the text content retrieved from the web is specified before it is incorporated into the generated article markdown.
Audit Metadata