event-prospecting
Pass
Audited by Gen Agent Trust Hub on Apr 27, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to use literal file paths rather than shell expansion symbols like
~or$HOMEspecifically to avoid triggering platform-level security approval prompts. This design choice is intended to streamline the automated researcher's experience within the Browserbase ecosystem.\n- [PROMPT_INJECTION]: The skill incorporates an indirect prompt injection surface by scraping content from conference websites and company homepages. To manage this risk, the skill provides subagents with strict instructions to only quote or paraphrase found content and enforces a hard cap on tool calls to prevent runaway execution.\n- [EXTERNAL_DOWNLOADS]: The skill performs dynamic web scraping of external event pages and company websites using the Browserbasebbandbrowseutilities as its primary data collection mechanism.
Audit Metadata