blog-chart
Pass
Audited by Gen Agent Trust Hub on Mar 30, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted input data (titles, metrics, and labels) to generate SVG charts, which constitutes an indirect prompt injection vulnerability surface.
- Ingestion points: External data enters the agent context through the 'Chart Request' structure defined in SKILL.md.
- Boundary markers: The instructions do not define clear delimiters or include warnings to ignore instructions that might be embedded within the provided data points.
- Capability inventory: The skill has access to several tools including Bash, Read, Write, Edit, and Grep.
- Sanitization: There are no instructions for sanitizing, escaping, or validating the provided input strings before they are interpolated into the SVG markup templates.
Audit Metadata