biz-pestel
Pass
Audited by Gen Agent Trust Hub on Apr 10, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADSNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted user-provided business context to generate analysis, creating a surface for indirect prompt injection.
- Ingestion points: User-provided parameters for 'Market/Country', 'Business Context', and 'Time Horizon' defined in SKILL.md and interpolated into the analysis template.
- Boundary markers: The output format uses markdown headers and list structures, but there are no explicit instructions to the agent to disregard or escape potential commands embedded within user input.
- Capability inventory: The skill contains no executable scripts or tools; it is restricted to text generation based on the provided instructions.
- Sanitization: No validation or sanitization is performed on user-provided strings before processing.
- [EXTERNAL_DOWNLOADS]: The reference document (references/data-sources.md) lists numerous official and well-known international organizations and government statistical bureaus, including the World Bank, IMF, UN, and WHO. These are provided as informational links to authoritative sources for macro-environmental data.
- [NO_CODE]: The skill is composed entirely of markdown documentation and reference materials; it does not contain any executable code, scripts, or automated tooling.
Audit Metadata