brand-identity
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted user input (project descriptions) to generate brand assets, which introduces a potential surface for indirect prompt injection.
- Ingestion points: User-provided project descriptions enter the agent context as described in SKILL.md.
- Boundary markers: The instructions lack explicit delimiters or warnings to ignore instructions embedded within the user-provided data.
- Capability inventory: The skill uses Python libraries (Pillow and reportlab) to generate and write .md, .png, and .pdf files as defined in SKILL.md.
- Sanitization: No sanitization or validation routines for the input project descriptions are specified in the provided code snippets or instructions.
Audit Metadata