pricing
Pass
Audited by Gen Agent Trust Hub on May 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is composed of purely instructional Markdown files and a JSON evaluation file. There are no executable scripts (.sh, .py, .js), binaries, or automation commands present in the skill package.
- [DATA_EXPOSURE]: The instructions direct the agent to check for project-specific context in files like .agents/product-marketing.md. This behavior is restricted to local documentation and does not involve access to sensitive system directories, credentials, or private keys.
- [INDIRECT_PROMPT_INJECTION]: 1. Ingestion points: .agents/product-marketing.md, .claude/product-marketing.md, and product-marketing-context.md. 2. Boundary markers: Absent. 3. Capability inventory: No command execution, file system modification, or network capabilities are present in the skill. 4. Sanitization: Absent. The skill is safe as it lacks any capabilities that could be exploited by malicious content within the ingested context files.
Audit Metadata