internal-comms
Pass
Audited by Gen Agent Trust Hub on Mar 15, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it processes untrusted data from external platforms.
- Ingestion points: The files
examples/3p-updates.md,examples/company-newsletter.md, andexamples/faq-answers.mdinstruct the agent to read from Slack, Google Drive, Email, and Calendar. - Boundary markers: No delimiters or safety instructions are provided to help the agent distinguish between data and instructions within the ingested content.
- Capability inventory: The skill leverages agent tools to access a wide range of sensitive corporate information.
- Sanitization: The skill lacks logic for filtering or validating content fetched from external sources.
Audit Metadata