email-drafter
Pass
Audited by Gen Agent Trust Hub on Mar 27, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security risks were identified. The skill's operations are consistent with its stated purpose of drafting and analyzing email communication styles.
- [COMMAND_EXECUTION]: The skill writes generated content to the workspace under the
outputs/directory. This is a standard and expected behavior for a document-drafting tool. - [PROMPT_INJECTION]: While the skill processes external data (previous emails), the risk of indirect prompt injection is mitigated by the skill's restricted output format (markdown files) and the requirement for manual user review before any action is taken.
- [DATA_EXFILTRATION]: The skill accesses email history via the WorkIQ tool for style analysis but does not perform any unauthorized network operations or send data to external third-party services.
Audit Metadata