make-scenario-creator
Fail
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: HIGHPROMPT_INJECTIONCOMMAND_EXECUTIONNO_CODE
Full Analysis
- [Indirect Prompt Injection] (HIGH): A high-risk vulnerability surface is present because the skill is designed to ingest and process untrusted external content (emails, spreadsheets) while possessing high-privilege capabilities including 'Bash', 'Write', and 'Edit'. There are no boundary markers or sanitization instructions provided to prevent the agent from obeying malicious instructions embedded in that data.
- [Command Execution] (MEDIUM): The skill manifest explicitly requests the 'Bash' tool. While no scripts are provided in this version, granting shell access to an agent processing external business data represents a significant security risk if the agent's logic is subverted.
- [Metadata Poisoning] (SAFE): Metadata fields are consistent with the skill's stated automation purpose and do not contain hidden instructions.
Recommendations
- AI detected serious security threats
Audit Metadata