marketing-ideas
Pass
Audited by Gen Agent Trust Hub on Feb 22, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [Data Exposure & Exfiltration] (SAFE): The skill references a local context file (
.claude/product-marketing-context.md) and a reference file (references/ideas-by-category.md). These are used for context and information retrieval only. No sensitive credentials or network-based exfiltration patterns were detected. - [Indirect Prompt Injection] (LOW): The skill is designed to ingest data from
.claude/product-marketing-context.md. While this presents a surface for indirect prompt injection if the content of that file is attacker-controlled, the skill itself possesses no high-risk capabilities (such as network access or command execution) that could be leveraged for an exploit. - [Remote Code Execution] (SAFE): No package installations (npm/pip) or remote script downloads (curl/wget) are present in the skill.
- [Prompt Injection] (SAFE): There are no instructions that attempt to override the underlying agent's safety protocols or system prompts.
- [Command Execution] (SAFE): The skill does not contain any shell commands, subprocess calls, or scripts.
Audit Metadata