orchestrating-search-visibility
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill's primary function involves analyzing external URLs and competitor websites provided by the user. This creates a surface where an agent might ingest malicious instructions embedded in those external sites.
- Ingestion points: User-provided primary URL and competitor URLs (Discovery Questions 1 & 5 in SKILL.md).
- Boundary markers: None present in the instructions to delimit external content from system instructions.
- Capability inventory: The skill implies the use of web-browsing or content-fetching tools to perform the requested analysis.
- Sanitization: No explicit sanitization or instruction-ignoring directives are provided for the fetched content.
- [No Code] (SAFE): The skill consists entirely of markdown-based natural language instructions. It does not include any Python scripts, Node.js code, shell commands, or binary files, which significantly reduces the technical attack surface.
Audit Metadata