attribution
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill follows a legitimate multi-agent architecture to perform marketing attribution tasks. It uses standard tools like
Read,Grep, andBashto manage project files in the.agents/directory. No evidence of unauthorized system access, privilege escalation, or persistence was found. - [PROMPT_INJECTION]: The skill's architecture consumes marketing content files (e.g., in
.agents/mkt/content/), creating an indirect prompt injection surface. However, the instructions do not facilitate safety bypasses or malicious execution of ingested content. - Ingestion points: Files in
.agents/mkt/content/and.agents/mkt/imc-plan.md(as referenced in SKILL.md and agent instructions). - Boundary markers: Not present; content is incorporated into agent context without explicit delimiters or instructions to ignore embedded directives.
- Capability inventory:
Bashfor file operations,WebSearch,WebFetch, and file system read tools (SKILL.md). - Sanitization: No explicit sanitization or validation of the content files is performed before they are passed to mapping agents.
Audit Metadata