Skills
skills/fw1201/tw-stu-skills/tw-stu-exam-prep/Gen Agent Trust Hub

tw-stu-exam-prep

Pass

Audited by Gen Agent Trust Hub on Apr 9, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: Indirect Prompt Injection Surface.
  • Ingestion points: The skill ingests data from local reference files (e.g., references/exam_systems.md) and diagnostic information provided by the user in SKILL.md (Step 2).
  • Boundary markers: There are no explicit delimiters or 'ignore embedded instruction' markers used when interpolating student data or reference content into the agent context.
  • Capability inventory: The skill is authorized to use Bash, Write, GoogleCalendar, and Notion tools, which provides an execution path for instructions that might be embedded in untrusted inputs.
  • Sanitization: The skill lacks explicit validation or sanitization steps for the input data before it is used to generate study plans or calendar entries.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 9, 2026, 12:30 PM