page-cro
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes external web page content for analysis, which creates a surface for indirect prompt injection where malicious instructions within the analyzed pages could attempt to subvert the agent's instructions.
- Ingestion points: User-provided web page text, headlines, and CTA copy analyzed in Phase 1 and Phase 2 (SKILL.md).
- Boundary markers: Absent. The skill does not define delimiters or specific instructions to treat external data as untrusted.
- Capability inventory: None. The skill does not include any subprocess calls, file operations, or network tools.
- Sanitization: Absent. The instructions do not specify any validation or filtering of the content being analyzed.
Audit Metadata