novel-analyzer
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill creates an attack surface for indirect prompt injection.
- Ingestion points: SKILL.md defines a workflow that fetches content from external web platforms via WebSearch.
- Boundary markers: No delimiters or isolation instructions are present to protect the agent from malicious content in search results.
- Capability inventory: Analysis shows the skill is restricted to text generation and summarization, lacking dangerous system permissions.
- Sanitization: No input filtering or content sanitization is implemented for the data retrieved from external sources.
Audit Metadata