career-biographer
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface by processing untrusted career narratives provided by users during the interview phase to generate professional documents. • Ingestion points: Career history and achievement data gathered through the 'Interview Methodology' described in
SKILL.md. • Boundary markers: The skill does not define explicit delimiters or instructions to ignore embedded commands within the career data when generating outputs. • Capability inventory: The skill utilizesRead,Write, andEdittools to manage career profile files and generate narrative assets. • Sanitization: There is no evidence of validation, escaping, or filtering of user-provided strings before they are interpolated into the final CV or portfolio outputs.
Audit Metadata