lead-research
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [NO_CODE] (SAFE): The skill consists exclusively of instructional text and metadata. It does not include any Python scripts, JavaScript files, or other executable components.
- [Indirect Prompt Injection] (SAFE): The skill outlines a workflow for searching and analyzing external web content (job boards, blogs, LinkedIn). While this activity involves ingesting untrusted data, the skill itself does not contain malicious code or active exploitation instructions. Evidence: 1. Ingestion points: External websites, job boards, GitHub, and social profiles. 2. Boundary markers: None specified. 3. Capability inventory: No tools or code execution defined within the skill. 4. Sanitization: No sanitization steps mentioned in the documentation.
Audit Metadata