NLP Learning Assistant
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface by design. It is instructed to read and interpret external files from 'data/nlp/' and 'aisd/courses/nlp/notes/' to provide tutoring, translations, and summaries. If these source files contain adversarial instructions, they could influence the agent's output or behavior.\n
- Ingestion points: Local directories containing course materials and markdown notes files (e.g., 'aisd/courses/nlp/notes/lecture*_notes.md').\n
- Boundary markers: Absent. The instructions do not specify any delimiters or warnings to ignore instructions embedded within the ingested materials.\n
- Capability inventory: The skill is capable of code analysis, debugging support, and generating practice materials based on external content.\n
- Sanitization: Absent. There is no mention of content sanitization or validation for the files being read.
- [NO_CODE]: The skill consists entirely of markdown instructions and metadata, with no accompanying executable scripts or binary files, which reduces the overall risk profile.
Audit Metadata