Invoice Automation
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill identifies ingestion points for untrusted data, specifically customer information and line item details within the SKILL.md file. It lacks explicit boundary markers or sanitization procedures for these inputs. The skill's capabilities include executing financial transactions via tools like quickbooks_create_invoice and stripe_create_invoice. While this constitutes a surface for indirect prompt injection, it is consistent with the primary purpose of invoice automation.
- [EXTERNAL_DOWNLOADS]: The skill documentation references official APIs and tools for well-known financial services, including Stripe, QuickBooks, Xero, and FreshBooks. These references are appropriate for the skill's functionality and target trusted infrastructure.
Audit Metadata