personal statement
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted external content such as resumes and application prompts to generate draft statements, creating a surface for indirect prompt injection.
- Ingestion points: Stage 1 (Gather) reads CVs, resumes, transcripts, and target program prompts provided by the user.
- Boundary markers: The instructions do not define specific delimiters or 'ignore' instructions for the ingested text.
- Capability inventory: The skill uses create_file and replace_string_in_file tools to save and update user context in the .claude/ directory.
- Sanitization: No explicit sanitization or filtering of the ingested external content is described.
Audit Metadata