market-research-reports
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The script
scripts/generate_market_visuals.pyusessubprocess.runto automate the generation of market diagrams. It programmatically constructs commands to call Python scripts from other local skills (scientific-schematicsandgenerate-image). While it uses a list for command arguments to prevent shell injection, the capability to spawn subprocesses is a significant permission. - [EXTERNAL_DOWNLOADS]: The skill's workflow relies on the
research-lookuptool to fetch market statistics and industry data from remote sources (e.g., Gartner, IDC, and government reports). This results in the processing of untrusted remote content within the agent's context. - [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection (Category 8) because it processes untrusted data and possesses powerful capabilities.
- Ingestion points: External industry data is ingested through the
research-lookupskill as described inSKILL.md. - Boundary markers: The prompt instructions do not include explicit delimiters or safety instructions to prevent the agent from following commands that might be hidden within the fetched research data.
- Capability inventory: The skill is granted
Bash,Write,Read, andEditpermissions, and includes utility scripts that execute subprocesses. - Sanitization: No validation or sanitization of external research content is performed before it is integrated into the LaTeX report generation process.
Audit Metadata