workspace-insights
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill performs legitimate administrative functions for workplace management. All data access operations, including building inventory, space utilization, and reservation analysis, are aligned with the stated purpose of facility optimization and reporting.\n- [PROMPT_INJECTION]: The skill ingests untrusted data from facility requests and incident records to generate reports. While this creates a potential indirect prompt injection surface, it is a standard requirement for workplace service analysis and the skill does not contain logic to execute instructions found in these data sources.\n
- Ingestion points: The skill retrieves record data from ServiceNow tables including fm_facility_request and incident via the SN-Query-Table tool.\n
- Boundary markers: No specific delimiters or boundary instructions are used for the retrieved data content.\n
- Capability inventory: The skill utilizes the SN-Query-Table MCP tool and lists Bash as a native tool capability.\n
- Sanitization: Data is processed for metric calculation and summary generation without explicit sanitization documented.
Audit Metadata