analyze-resume
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection because it processes untrusted data from resume files without using boundary markers or sanitization to prevent the agent from obeying instructions embedded within the resume text.
- Ingestion points: Resume file content is read and processed in Phase 0 of
SKILL.md. - Boundary markers: Absent. There are no instructions to the agent to treat the file content strictly as data or to ignore embedded commands.
- Capability inventory: The skill uses a Read tool to access the local file system based on user-provided paths.
- Sanitization: Absent. No validation or filtering is applied to the ingested content before it is used to generate reports and interview questions.
Audit Metadata