Skills
skills/dedalus-erp-pas/foundation-skills/hexagone-swdoc/Gen Agent Trust Hub

hexagone-swdoc

Pass

Audited by Gen Agent Trust Hub on Mar 20, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill uses the WebFetch tool to retrieve documentation from the internal vendor domain https://erp-pas.gitlab-pages-erp-pas.dedalus.lan/. This domain corresponds to the author's infrastructure and is the primary source for the requested information.
  • [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface through the ingestion of external documentation data.
  • Ingestion points: Documentation pages fetched via WebFetch as defined in SKILL.md.
  • Boundary markers: Not defined; the skill does not specify the use of delimiters when presenting fetched data.
  • Capability inventory: Limited to WebFetch; no command execution or file system permissions are granted.
  • Sanitization: None described for the fetched content.
  • [SAFE]: No evidence of malicious behavior, credential exposure, or persistence mechanisms was detected. All network activity is directed to the author's identified resources.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 20, 2026, 07:59 AM