Skills
skills/anassahel/sailpoint-skills/sailpoint-orphan-and-dormant-account-report/Gen Agent Trust Hub

sailpoint-orphan-and-dormant-account-report

Pass

Audited by Gen Agent Trust Hub on Mar 13, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes the sail CLI to interact with SailPoint APIs for environment selection, source listing, and account/identity retrieval.
  • [PROMPT_INJECTION]: The skill processes data from the SailPoint Identity Security Cloud, creating an attack surface for indirect prompt injection.
  • Ingestion points: Account and identity data are retrieved through sail api commands in SKILL.md.
  • Boundary markers: No specific delimiters are used when formatting API data into reports.
  • Capability inventory: The skill can disable or delete accounts using the sail CLI.
  • Sanitization: There is no evidence of data sanitization before interpolation into the output.
  • [EXTERNAL_DOWNLOADS]: The skill utilizes the sail CLI, which is a legitimate tool provided by SailPoint, a well-known identity security service.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 13, 2026, 07:47 AM