startup-competitors
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection due to its reliance on external, untrusted web content.
- Ingestion points: As detailed in
references/research-wave-2-sentiment-mining.mdandreferences/research-wave-3-gtm-signals.md, the research agents are instructed to mine data from platforms like Reddit, G2, Capterra, and competitor websites. - Boundary markers: The provided agent templates do not include specific delimiters or instructions to prevent the agent from obeying malicious commands that might be embedded in the scraped web content.
- Capability inventory: The skill possesses the capability to write synthesized findings to various project files (e.g.,
competitors-report.md). While no direct code execution was found, the generated reports influence decision-making and downstream agent actions. - Sanitization: There are no documented procedures for sanitizing or validating the content retrieved via web search before it is used in the synthesis phase.
Audit Metadata