vdr-management
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides procedural guidance for document taxonomy and organization. It does not include scripts, binaries, or network-bound operations.
- [PROMPT_INJECTION]: The skill's primary function involves processing untrusted external data (seller document uploads), which presents a surface for indirect prompt injection. This is an inherent risk of document-processing tasks and is typically managed by model-level safety guardrails.
- Ingestion points: Processes unstructured file uploads and seller document dumps as described in
SKILL.md. - Boundary markers: The instructions do not define specific delimiters or instructions to ignore embedded commands within the processed files.
- Capability inventory: Operations are limited to document classification, renaming, and indexing.
- Sanitization: No specific sanitization or validation logic is specified for the document text before processing.
Audit Metadata