cro-methodology
Pass
Audited by Gen Agent Trust Hub on Mar 21, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it is designed to analyze untrusted external data from landing pages and conversion funnels. The methodology lacks instructions for using boundary markers or sanitization to prevent malicious instructions embedded in that data from influencing the agent's behavior.
- Ingestion points: Analysis of external website content, surveys, and customer feedback (SKILL.md, references/RESEARCH.md).
- Boundary markers: No explicit delimiters or instructions to ignore embedded commands are specified in the prompt templates.
- Capability inventory: The skill frontmatter authorizes the use of file system tools including Read, Glob, and Grep.
- Sanitization: No evidence of sanitization, escaping, or validation of ingested content is provided.
- [NO_CODE]: The skill consists exclusively of markdown documentation files and does not contain any executable scripts, binaries, or environment-specific configuration files that would require code analysis for execution risks.
Audit Metadata