hotel-inventory-management
Pass
Audited by Gen Agent Trust Hub on Mar 16, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: Indirect prompt injection surface identified. 1. Ingestion points: 'historical_bookings', 'events_calendar', 'competitors_data', 'group_requests', and 'transient_forecast' in SKILL.md. 2. Boundary markers: Absent. 3. Capability inventory: Subprocess execution via 'PULP_CBC_CMD' in SKILL.md. 4. Sanitization: Absent.
- [COMMAND_EXECUTION]: The skill uses the PuLP library for mathematical optimization, which triggers the execution of external solver binaries through system-level subprocess calls.
Audit Metadata