pricing-strategy
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWPROMPT_INJECTIONNO_CODE
Full Analysis
- Indirect Prompt Injection (LOW): The skill is designed to ingest external context from a local file, creating a vulnerability surface where untrusted data could influence the agent's reasoning.
- Ingestion points: The skill instructions in
SKILL.mdprompt the agent to read.claude/product-marketing-context.mdif it exists. - Boundary markers: Absent; there are no delimiters or instructions to ignore embedded commands within the context file.
- Capability inventory: The skill files contain no code (Python, JS, or Shell), no file-writing tools, and no network access capabilities.
- Sanitization: Absent; the content is processed directly for reasoning.
- Prompt Injection (SAFE): Analysis of the instructions and metadata revealed no attempts to bypass safety filters, extract system prompts, or override internal agent controls.
- Data Exposure & Exfiltration (SAFE): The skill does not access sensitive system paths (e.g., SSH, credentials) or perform any network requests.
- No Code (SAFE): The skill consists entirely of Markdown and YAML frontmatter; it contains no executable scripts or runtime logic.
Audit Metadata