Skills
skills/gusibi/skills/llm-price-scraper/Gen Agent Trust Hub

llm-price-scraper

Pass

Audited by Gen Agent Trust Hub on Mar 10, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [INDIRECT_PROMPT_INJECTION]: The skill is designed to visit and analyze external web pages provided by the user, which presents a surface for indirect prompt injection attacks where a malicious site could influence the agent's logic.
  • Ingestion points: The skill uses agent-browser open <url> and agent-browser snapshot -i in SKILL.md to bring external content into the agent's context.
  • Boundary markers: There are no explicit delimiters or instructions provided in the SKILL.md workflow to mandate that the agent ignore potential instructions embedded within the scraped page content.
  • Capability inventory: The skill possesses the capability to interact with pages (via agent-browser click) and perform file system writes and reads (via the node scripts/merge_prices.js execution mentioned in SKILL.md).
  • Sanitization: The skill lacks any mechanism to sanitize or filter external content before it is processed by the agent for data extraction.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 10, 2026, 04:51 AM