email-sequence
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): The instructions are task-oriented and do not contain patterns intended to override AI safety filters or extract system prompts.
- Data Exposure & Exfiltration (SAFE): No access to sensitive file paths (e.g., SSH keys, AWS credentials) or unauthorized network operations were found. The use of local marketing context files is a standard, low-risk practice.
- Remote Code Execution (SAFE): The skill does not include any external dependencies, remote script execution patterns (like piped bash commands), or dynamic code execution.
- Indirect Prompt Injection (SAFE): The skill identifies an ingestion point (reading .claude/product-marketing-context.md) and processes user input for email generation. However, because the skill possesses no high-risk capabilities—such as file writing, shell execution, or external network access—there is no viable attack surface for exploiting indirect prompt injection.
Audit Metadata