Instantly Automation
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [Data Exposure & Exfiltration] (SAFE): The skill processes outreach data and requires API authentication, which is expected for the stated purpose of managing email campaigns. Credential handling is deferred to the MCP connection process rather than stored within the skill.
- [No Code] (SAFE): The skill consists of documentation and tool definitions for an external MCP server. It contains no local executable scripts, packages, or binary files that could pose a runtime risk.
- [Indirect Prompt Injection] (LOW): The skill processes lead data and campaign content retrieved from the Instantly API. While there is a theoretical surface for indirect prompt injection if an attacker-controlled lead contains malicious instructions, this is a general risk for data-processing skills and not an issue specific to this implementation.
Audit Metadata