Zendesk Automation
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted data from support requests and ticket details, creating a surface for indirect prompt injection where malicious content in a ticket could influence the agent's behavior.\n
- Ingestion points: Support requests and ticket data (SKILL.md).\n
- Boundary markers: No explicit delimiters or instructions to ignore embedded commands were found in the response templates or triage logic.\n
- Capability inventory: The skill possesses write access to the support environment via tools such as zendesk_create_ticket, zendesk_update_ticket, and zendesk_macros (SKILL.md).\n
- Sanitization: No input validation or sanitization of external ticket content was detected before processing.
Audit Metadata