gsc-assistant
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [Indirect Prompt Injection] (SAFE): The skill processes external data files such as sitemap.xml and gsc-export.csv. While this represents a surface for untrusted data ingestion, it is necessary for the skill's function and limited to data extraction. Evidence Chain: 1. Ingestion points: sitemap.xml, gsc-export.csv. 2. Boundary markers: None. 3. Capability inventory: Local file manipulation. 4. Sanitization: None.
- [Data Exposure & Exfiltration] (SAFE): No sensitive credentials or exfiltration commands were detected.
- [No Code] (SAFE): This skill is composed entirely of natural language instructions without scripts or dependencies.
Audit Metadata