fetch-url-as-markdown
Pass
Audited by Gen Agent Trust Hub on May 4, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it fetches content from untrusted external URLs. * Ingestion points: The fetch_url.py script retrieves raw content from any user-provided URL. * Boundary markers: The resulting Markdown output does not include delimiters or instructions to ignore embedded instructions. * Capability inventory: The agent is expected to summarize or process the retrieved content, which could lead to following malicious instructions contained within the page. * Sanitization: The tool converts HTML to Markdown but does not scan the text for prompt injection patterns.
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the trafilatura package from the official Python Package Index (PyPI). This is a well-known and widely used library for web content extraction.
Audit Metadata