marketing-ideas
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFENO_CODE
Full Analysis
- Category 8: Indirect Prompt Injection (SAFE): The skill is designed to read data from a local context file to tailor its advice. 1. Ingestion points: .claude/product-marketing-context.md. 2. Boundary markers: Absent. 3. Capability inventory: None; the skill only generates text output and does not have access to subprocesses, network calls, or file-writing tools. 4. Sanitization: Absent. Given the lack of dangerous capabilities, this ingestion point is considered safe.
- NO_CODE (SAFE): No executable code, shell scripts, or package manager files (e.g., package.json, requirements.txt) are present in the skill.
Audit Metadata