Skills
skills/aws-samples/sample-strands-agent-with-agentcore/workspace/Gen Agent Trust Hub

workspace

Pass

Audited by Gen Agent Trust Hub on Apr 24, 2026

Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
  • [SAFE]: The skill facilitates session-isolated file operations, utilizing automatically injected session identifiers to ensure data security and prevent unauthorized access.
  • [PROMPT_INJECTION]: The skill exposes a surface for indirect prompt injection (Category 8) by reading content from potentially untrusted files. 1. Ingestion points: Ingests file content via workspace_read in SKILL.md. 2. Boundary markers: No specific delimiters or instructions are specified for the ingested content. 3. Capability inventory: Includes file-write access and interaction with other session tools. 4. Sanitization: No content sanitization or validation is described.
  • [NO_CODE]: No executable scripts or binary files are distributed with this skill; it provides instructions for using workspace platform tools.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 24, 2026, 02:12 PM