job-description-analyzer
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted user data (job descriptions and resumes) which presents a risk of indirect prompt injection.
- Ingestion points: Job descriptions and resumes are processed as strings in
SKILL.md. - Boundary markers: No delimiters (such as XML tags) or 'ignore-instructions' warnings are used to separate user data from the core prompt.
- Capability inventory: No dangerous capabilities such as file system access, shell execution, or network requests are present.
- Sanitization: No input validation or sanitization logic is implemented for user-provided text.
- [NO_CODE]: The skill consists of markdown instructions and metadata without any accompanying source code or scripts.
- [SAFE]: No malicious patterns such as obfuscation, data exfiltration, hardcoded credentials, or privilege escalation were identified.
Audit Metadata