workflow-e2e-from-recording
Pass
Audited by Gen Agent Trust Hub on Mar 21, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill employs high-priority imperative language ('MUST', 'Do NOT skip') and markers ('[IMPORTANT]') to enforce a strict sequential workflow. This is intended to constrain the agent's behavior and ensure specific tool invocations occur without modification.
- [PROMPT_INJECTION]: The skill creates a surface for indirect prompt injection by passing the user's prompt directly into a workflow context for execution-capable tools. 1. Ingestion points: user prompt (SKILL.md). 2. Boundary markers: Absent. 3. Capability inventory: /scout, /e2e-test, /test, /watzup (SKILL.md). 4. Sanitization: Absent.
- [NO_CODE]: No executable code, Python scripts, or Node.js packages are included within the skill; all logic is defined through markdown-based workflow instructions.
Audit Metadata