churn-risk-detection
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill is designed to process untrusted external data (Transaction Data, Customer IDs, Engagement Data, Service Data), creating a surface for indirect prompt injection attacks where malicious instructions could be embedded in the data to influence the agent's behavior.
- Ingestion points: Data inputs defined in the 'Required Inputs' section of SKILL.md, including transaction history and engagement signals.
- Boundary markers: Absent; the skill does not define specific delimiters or instructions for the agent to ignore content within the data.
- Capability inventory: None; the skill provides only documentation and formulas, with no executable scripts, subprocess calls, or network operations.
- Sanitization: Absent; no input validation or sanitization procedures are described in the methodology.
- [NO_CODE]: The skill consists entirely of markdown documentation and analytical methodology. It does not include any scripts, binaries, or other executable components.
Audit Metadata