Skills
skills/codealive-ai/ai-cofounder/product-marketing-context/Gen Agent Trust Hub

product-marketing-context

Pass

Audited by Gen Agent Trust Hub on Apr 2, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill presents a surface for indirect prompt injection through its 'Auto-draft' feature.
  • Ingestion points: The workflow instructs the agent to read multiple files from the repository, including the README, landing pages, marketing copy, and package.json (found in SKILL.md).
  • Boundary markers: There are no instructions to use delimiters (like XML tags or triple quotes) or specific warnings for the agent to ignore any instructions embedded within the ingested repository files.
  • Capability inventory: The skill is capable of reading repository files and writing a new document to the .agents/ directory (found in SKILL.md).
  • Sanitization: The skill does not define any sanitization or validation logic to filter out potentially malicious content from the codebase before it is processed.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 2, 2026, 07:02 AM