confluence-analytics
Pass
Audited by Gen Agent Trust Hub on May 3, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill ingests untrusted data from Confluence metadata fields (page titles, contributor names, and labels) which constitutes an indirect prompt injection surface.
- Ingestion points: Metadata returned by the 'confluence' CLI analytics commands.
- Boundary markers: No specific delimiters or 'ignore' instructions are provided to help the agent distinguish content from instructions.
- Capability inventory: The skill utilizes the 'confluence' CLI tool for read-only data retrieval.
- Sanitization: There is no evidence of metadata sanitization before it is processed by the agent.
Audit Metadata