edge-commerce
Pass
Audited by Gen Agent Trust Hub on Mar 16, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill implements logic that processes untrusted request data to drive edge behavior.
- Ingestion points: Request headers ('CF-IPCountry') and cookies are accessed in SKILL.md.
- Boundary markers: No delimiters or safety instructions are provided to mitigate injection in the edge logic.
- Capability inventory: The skill patterns include network operations via fetch() and persistence via KV stores.
- Sanitization: Header and cookie values are processed without validation or sanitization before being used in logic.
Audit Metadata