image-metadata-tool
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- Prompt Injection (LOW): Indirect Prompt Injection Surface.
- Ingestion points: The skill reads metadata from user-provided images via the ImageMetadata.load() and extract_batch() methods as described in SKILL.md.
- Boundary markers: No specific delimiters or instructions to ignore embedded commands are present in the provided documentation or usage examples.
- Capability inventory: The skill possesses file-write capabilities (JSON, CSV, and HTML map generation) and batch processing logic.
- Sanitization: There is no evidence of sanitization or validation of the extracted EXIF strings before they are returned to the agent or exported to files.
Audit Metadata