marketing-ideas
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWPROMPT_INJECTION
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill instructs the agent to read '.claude/product-marketing-context.md' for product context, which creates an ingestion surface for potentially untrusted data.
- Ingestion points: '.claude/product-marketing-context.md' (SKILL.md)
- Boundary markers: Absent; the skill does not provide delimiters or instructions to ignore embedded commands within the context file.
- Capability inventory: Text generation and marketing strategy reasoning. No capabilities for file system modification, command execution, or network access were detected.
- Sanitization: Absent; there is no logic to validate or filter the content of the context file before it is processed by the agent.
Audit Metadata