coach
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection as it processes data from external sources and web research.
- Ingestion points: Data is pulled from web search results and user-specified directories like [YOUR_KNOWLEDGE_ARCHIVE].
- Boundary markers: The skill lacks instructions to isolate or disregard potential instructions found within these external data sources.
- Capability inventory: The skill uses web search and local file read/write capabilities.
- Sanitization: External content is processed without validation or escaping.
- [NO_CODE]: The skill is comprised solely of markdown instructions and reference documentation, with no executable scripts or binary dependencies provided.
Audit Metadata