paywall-upgrade-cro
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFENO_CODE
Full Analysis
- Category 4: Unverifiable Dependencies & Remote Code Execution (SAFE): The skill is composed entirely of markdown documentation and does not include any scripts, package manifests, or remote execution patterns.
- Category 8: Indirect Prompt Injection (LOW): The skill defines a data ingestion surface but lacks exploitable capabilities to facilitate an attack. 1. Ingestion points: The skill instructs the agent to read .claude/product-marketing-context.md in SKILL.md. 2. Boundary markers: No explicit delimiters or warnings are provided for the ingested content. 3. Capability inventory: There are no scripts, subprocess calls, network operations, or file-writing functions across the provided files. 4. Sanitization: No sanitization or validation logic is defined.
Audit Metadata