market-research
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection due to its core functionality of ingesting untrusted web data.
- Ingestion points: The
consumer-landscape-agent.mdandcompetitor-agent.mdagents use tools (Exa, Firecrawl, WebSearch) to ingest data from external, attacker-controllable sources such as Reddit, Hacker News, G2, and Capterra. - Boundary markers: Absent. The agent prompts do not include explicit instructions to ignore instructions that may be embedded within the retrieved search results or scraped webpage content.
- Capability inventory: The agents have the capability to perform web searches and write analysis to a markdown file (
.agents/market-research.md). No high-privilege capabilities like shell execution, network exfiltration of local files, or sensitive credential access are present. - Sanitization: Absent. The skill does not implement filtering or validation of the external content before it is processed by the AI agents.
Audit Metadata