email-response-simulation
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted external data which could potentially contain malicious instructions intended to influence the agent's behavior during the simulation and roast phases.
- Ingestion points: The skill ingests 'Draft email text' and data from public sources like LinkedIn and company websites as defined in Phase 1 of SKILL.md.
- Boundary markers: No explicit markers or instructions are provided to the agent to ignore or isolate potential instructions embedded within the draft emails or research results.
- Capability inventory: The skill is restricted to text generation and data enrichment for the purpose of persona simulation; it does not have access to sensitive file systems, execute arbitrary commands, or perform unauthorized network writing.
- Sanitization: There is no evidence of sanitization or validation for the input email text or the content retrieved from external research providers.
Audit Metadata