client-reporting-delivery
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill defines a workflow for ingesting and processing data from external third-party sources such as Portfolio Management Systems and custodians. This creates a potential surface for indirect prompt injection where malicious instructions embedded in the data could influence the agent's behavior.
- Ingestion points: Data from external systems including PMS (Orion, Black Diamond) and custodian feeds (Schwab, Fidelity) as described in SKILL.md.
- Boundary markers: There are no instructions to use delimiters or warnings to ignore embedded instructions within the processed data.
- Capability inventory: The agent has access to high-capability tools including 'Bash', 'Read', 'Write', and 'Edit'.
- Sanitization: No sanitization, escaping, or validation logic is specified for the external data being processed.
Audit Metadata