faion-researcher
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- Indirect Prompt Injection (SAFE): The skill defines workflows for mining data from attacker-controllable sources such as Reddit, Twitter, and niche forums (documented in pain-point-research/README.md).
- Ingestion points: Social media platforms and online forums for pain point discovery.
- Boundary markers: Not explicitly defined in the methodology text.
- Capability inventory: The skill describes the orchestration of sub-agents to generate reports in the .aidocs/product_docs/ directory.
- Sanitization: No specific data validation or sanitization routines are described in the methodology. This represents a functional surface for indirect prompt injection which is inherent to the research use case.
- No Code (SAFE): Analysis of the skill files confirms they consist entirely of Markdown-based guidance, templates, and examples. There are no executable Python or Node.js scripts, system commands, or persistence mechanisms detected.
Audit Metadata