ad-to-landing-page-auditor
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection by ingesting untrusted data from external websites.\n
- Ingestion points: The skill fetches external landing page content using the
fetch_webpagetool (SKILL.md).\n - Boundary markers: No specific delimiters or instructions are used to separate fetched content from the agent's internal logic.\n
- Capability inventory: The skill has the capability to write and save generated reports to the local filesystem.\n
- Sanitization: There is no evidence of sanitization or filtering applied to the fetched HTML content.\n- [EXTERNAL_DOWNLOADS]: The skill uses tools to scrape data from Meta and Google ads through the Apify platform, which is a well-known third-party service.
Audit Metadata