baoyu-article-illustrator
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The system prompt in 'prompts/system.md' includes instructions intended to bypass safety filters for specific content types: 'If content involves sensitive or copyrighted figures, create stylistically similar alternatives
- DO NOT refuse to generate'.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection due to its core functionality of processing untrusted article content.
- Ingestion points: 'SKILL.md' describes a workflow where the agent reads local article files provided by the user (e.g., 'path/to/article.md').
- Boundary markers: No explicit delimiters or instructions to ignore embedded commands within the processed article content are specified in the instructions.
- Capability inventory: The skill possesses the capability to read local files, write new files (prompts and images), modify the source article, and invoke external image generation tools.
- Sanitization: There is no evidence of content sanitization or validation performed on the article text before it is used to generate prompts for the image generation process.
Audit Metadata