legal-diligence
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFE
Full Analysis
- [INDIRECT_PROMPT_INJECTION]: The skill's primary function involves processing untrusted external data, specifically counterparty NDA markups and material contracts from Virtual Data Rooms (VDRs).
- Ingestion points: Analyzes external legal documents and VDR content described in SKILL.md.
- Boundary markers: The skill does not define specific technical delimiters (e.g., XML tags or specific block markers) to isolate external text from the agent's instructions, though it includes a disclaimer about AI limitations.
- Capability inventory: The skill is restricted to text analysis, drafting, and reporting; no dangerous capabilities such as shell access, network exfiltration, or file modification are requested or present.
- Sanitization: No specific sanitization or filtering of external legal text is mentioned.
- [SAFE]: No obfuscation, hardcoded credentials, or unauthorized command execution patterns were found. The skill follows best practices for its domain by requiring qualified legal review for all outputs.
Audit Metadata