read-docs
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADSNO_CODE
Full Analysis
- [Prompt Injection] (LOW): Indirect Prompt Injection vulnerability surface.
- Ingestion points: Content retrieved from /llms.txt, .mdx files, and /api/search endpoints.
- Boundary markers: Absent; no instructions provided to delimit untrusted content or warn against embedded instructions.
- Capability inventory: The agent is instructed to parse and reason over external data, which can influence its logic.
- Sanitization: Absent; the skill processes raw MDX and JSON content directly.
- [External Downloads] (LOW): Downloads content from external, non-whitelisted documentation sites for processing.
- [No Code] (SAFE): No executable scripts or binaries are included with this skill.
Audit Metadata