Skills
skills/gnoviawan/agentic-marketing/bmad-agent-marketing-psychology/Gen Agent Trust Hub

bmad-agent-marketing-psychology

Pass

Audited by Gen Agent Trust Hub on Apr 3, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill references and provides instructions to download the agent-browser tool from Vercel Labs' official GitHub repository.
  • [COMMAND_EXECUTION]: In references/shared-patterns.md, the skill provides shell commands for the user or agent to install the agent-browser CLI and Playwright dependencies using npm and npx.
  • [PROMPT_INJECTION]: The skill's 'Live Website URL Audit' functionality (Context C) ingests data from untrusted external websites, which constitutes an indirect prompt injection surface.
  • Ingestion points: Web content is ingested during audits as described in references/shared-patterns.md.
  • Boundary markers: The skill does not define specific delimiters or instructions to the agent to ignore instructions embedded within the retrieved website content.
  • Capability inventory: The installation of agent-browser enables network operations and data retrieval capabilities.
  • Sanitization: There is no evidence of sanitization or content filtering for the data retrieved from live URLs.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 3, 2026, 11:27 AM