Skills
skills/happy-technologies-llc/happy-platform-skills/request-fulfillment/Gen Agent Trust Hub

request-fulfillment

Pass

Audited by Gen Agent Trust Hub on Apr 29, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection by processing untrusted data from an external system.
  • Ingestion points: External records are retrieved from ServiceNow tables such as sc_req_item, sc_task, and sc_item_option_mtom using the SN-Query-Table tool within SKILL.md.
  • Boundary markers: The instructions do not define boundary markers to encapsulate or ignore potential instructions embedded within the retrieved record fields.
  • Capability inventory: The skill has the capability to modify data in the source system via SN-Update-Record and SN-Add-Work-Notes tools.
  • Sanitization: There is no explicit sanitization or validation logic for the content fetched from external tables before it is processed in the fulfillment workflow.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 29, 2026, 04:35 PM