geo-optimizer
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes content from arbitrary external URLs, creating a surface for indirect prompt injection.
- Ingestion points:
scripts/audit-geo.pyandscripts/check-hedge-density.pyfetch content from target URLs. - Boundary markers: No explicit delimiters or instructions are provided to the agent to ignore embedded commands in the fetched data.
- Capability inventory: The skill has network access and the ability to execute subprocesses.
- Sanitization: BeautifulSoup is used to remove HTML structural tags like scripts and styles, but the extracted text content is not sanitized for potential natural language instructions.
- [EXTERNAL_DOWNLOADS]: The scripts automatically install the standard Python libraries
requestsandbeautifulsoup4from the official Python Package Index (PyPI) if they are missing from the environment. - [COMMAND_EXECUTION]: The skill uses
subprocess.check_callto manage its own dependency installation via thepippackage manager.
Audit Metadata