form-fill
Pass
Audited by Gen Agent Trust Hub on May 5, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill interacts with the vendor's domain api.deepread.tech for its intended functionality, representing standard behavior for the author's service.
- [PROMPT_INJECTION]: The skill has an indirect prompt injection surface due to the ingestion of untrusted data.
- Ingestion points: The skill processes PDF forms and JSON data provided at runtime (SKILL.md).
- Boundary markers: There are no instructions to use delimiters or ignore embedded directives within the ingested content.
- Capability inventory: The skill has access to the Bash, Read, and Write tools (SKILL.md).
- Sanitization: No content validation or filtering is mentioned for the processed documents or data.
Audit Metadata