ane-voice
Pass
Audited by Gen Agent Trust Hub on May 6, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection because it ingests and processes untrusted user input without employing defensive boundaries or sanitization techniques.
- Ingestion points: The skill explicitly requires user-provided text as input for its 'Eight-pass protocol' in SKILL.md.
- Boundary markers: There are no specified delimiters (e.g., XML tags or triple quotes) or 'ignore' instructions used to isolate the user text from the agent's core instructions.
- Capability inventory: Based on the SKILL.md definition, the agent's capabilities are restricted to text manipulation; it lacks access to network operations, file system writes, or subprocess execution.
- Sanitization: The skill does not perform any validation or escaping of the input text before processing it.
Audit Metadata