Skills
skills/garethmanning/claude-education-skills/differentiation-adapter/Gen Agent Trust Hub

differentiation-adapter

Pass

Audited by Gen Agent Trust Hub on Apr 2, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection through its input schema.
  • Ingestion points: Untrusted data enters the prompt via the original_task, learner_profile, learning_objective, student_profiles, and available_support fields in SKILL.md.
  • Boundary markers: The instructions do not employ delimiters (such as XML tags or triple quotes) to separate the teacher-provided content from the system instructions, which could allow an attacker to override the agent's behavior.
  • Capability inventory: The skill does not define any external tools, scripts, or network capabilities, which limits the potential impact of a prompt injection to the manipulation of the generated text output.
  • Sanitization: There is no evidence of validation or sanitization logic to prevent malicious instructions embedded in the input fields from influencing the model's logic.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 2, 2026, 10:53 PM