File Organizer
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: Indirect Prompt Injection Surface
- Ingestion points: The skill is designed to 'Analyze file contents to determine categorization' (SKILL.md), which involves the agent reading and processing data from external, potentially untrusted files.
- Boundary markers: The provided instructions do not include specific delimiters or 'ignore embedded instructions' markers to isolate file content from the agent's internal instruction set.
- Capability inventory: While the skill itself contains no code, it instructs the agent to perform file system operations such as creating folder structures, renaming files, and moving files.
- Sanitization: There are no explicit sanitization or filtering steps mentioned for the content extracted from documents.
- Note: An attacker could potentially embed malicious instructions within a document (e.g., a PDF or Markdown file) that, when analyzed, could attempt to influence the agent's behavior during the organization process.
Audit Metadata