gtm-marketing
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill facilitates the ingestion of external data from the web to generate marketing content, which creates a potential surface for indirect prompt injection.
- Ingestion points: External data enters the agent context via the WebSearch tool and through the outputs of the two general-purpose subagents (sonnet) defined in Step 2 of SKILL.md.
- Boundary markers: No explicit delimiters or 'ignore embedded instructions' warnings are present to separate external research data from internal instructions.
- Capability inventory: The skill possesses the ability to write files to the local project directory (Write tool) and to spawn further subtasks (Task tool).
- Sanitization: There is no evidence of sanitization, escaping, or validation of the content retrieved during the research phase before it is used to build the final marketing strategy or content pieces.
Audit Metadata