Skills
skills/inkeep/team-skills/ceo-office-hours/Gen Agent Trust Hub

ceo-office-hours

Pass

Audited by Gen Agent Trust Hub on Apr 14, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection (Category 8) due to its automated research capabilities.
  • Ingestion points: Untrusted data enters the context from WebSearch results (referenced in references/disrupt-techniques.md), codebase content accessed via Read, Grep, and Glob, and reports generated by subagents like /research and /worldmodel (referenced in SKILL.md).
  • Boundary markers: Absent. The skill does not employ explicit structural delimiters or 'ignore' instructions to wrap external content retrieved during the research phases.
  • Capability inventory: The skill possesses the capability to write to the filesystem (STRATEGY.md) and invoke other agent skills using the Agent tool (referenced in SKILL.md).
  • Sanitization: Absent. There is no specified mechanism for sanitizing or validating the content retrieved from external sources before it is processed by the AI agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 14, 2026, 09:30 AM