Skills
skills/jeremylongshore/claude-code-plugins-plus-skills/yt-packaging/Gen Agent Trust Hub

yt-packaging

Pass

Audited by Gen Agent Trust Hub on Mar 18, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: Indirect Prompt Injection Surface
  • Ingestion points: The skill utilizes the WebSearch tool to analyze competitor titles and the Read tool to load video-brief-yt-packaging.md from the working directory. These are points where untrusted or third-party content enters the agent's context.
  • Boundary markers: The instructions do not define boundary markers or delimiters for the data ingested from web searches or local files, which could lead the agent to interpret data as instructions.
  • Capability inventory: The agent has access to WebSearch, Read, and Write tools. Successful injection could potentially lead to unauthorized file writes or further malicious web requests.
  • Sanitization: There is no mention of sanitizing, escaping, or validating the content retrieved from external sources before it is processed by the AI.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 18, 2026, 02:28 PM