returns-reverse-logistics
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill facilitates the processing of untrusted data from customers, such as return reasons and defect descriptions, which are interpolated into communication templates. This constitutes an indirect prompt injection surface. \n
- Ingestion points: Data enters through placeholders in files like
references/communication-templates.mdandreferences/decision-frameworks.md. \n - Boundary markers: There are no explicit delimiters or instructions provided to the agent to distinguish between user data and system instructions. \n
- Capability inventory: The skill is primarily focused on text generation and workflow guidance and does not expose high-risk capabilities such as arbitrary shell execution or outbound network access. \n
- Sanitization: The provided files do not include mechanisms for sanitizing or validating user-provided strings before processing.
Audit Metadata