news-tracking
Pass
Audited by Gen Agent Trust Hub on Feb 22, 2026
Risk Level: SAFENO_CODEPROMPT_INJECTION
Full Analysis
- NO_CODE (SAFE): The skill consists entirely of markdown instructions (SKILL.md) and does not include any executable scripts, configuration files, or binary assets.
- Indirect Prompt Injection (LOW): The skill directs the agent to ingest and analyze untrusted external data from various web sources, creating a potential surface for instructions embedded in data to influence the agent. 1. Ingestion points: Tech news outlets, industry publications, analyst reports, and social media (SKILL.md). 2. Boundary markers: Absent; there are no instructions to ignore or treat retrieved content solely as data. 3. Capability inventory: The skill does not define any subprocess calls, file-write operations, or network requests within scripts. 4. Sanitization: Absent; external data is processed directly without validation or filtering.
Audit Metadata