email-drafter
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides well-structured templates and professional guidelines for drafting various types of business emails.
- [SAFE]: No malicious patterns such as code obfuscation, hardcoded credentials, or unauthorized network activity were detected.
- [SAFE]: The skill uses a designated MCP tool (
create_docx) for document generation, which is consistent with its stated purpose. - [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection due to its processing of untrusted user data into generated documents.
- Ingestion points: User-provided email scenarios, recipient information, and specific points to include as described in
SKILL.md. - Boundary markers: Absent; there are no specific delimiters or instructions to ignore embedded commands within user-provided context.
- Capability inventory: The skill has the ability to write to the file system using the
create_docxtool. - Sanitization: No evidence of input validation or content escaping is provided in the skill instructions.
Audit Metadata