stock-screener
Pass
Audited by Gen Agent Trust Hub on Feb 15, 2026
Risk Level: LOWPROMPT_INJECTIONNO_CODE
Full Analysis
- [Indirect Prompt Injection] (LOW): A vulnerability surface exists where untrusted CSV data is processed. 1. Ingestion points: load_csv() and load_dataframe() in SKILL.md. 2. Boundary markers: Absent. 3. Capability inventory: File reading/writing and summary_report() text generation. 4. Sanitization: No sanitization of CSV fields is documented.
- [Metadata Poisoning] (INFO): The skill documentation references an external script stock_screener.py that is not included in the provided files.
Audit Metadata