nil-contract-analysis-samir-patel
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because its core function involves processing and analyzing untrusted text from user-uploaded NIL contract PDFs.
- Ingestion points: Untrusted text enters the agent context via PDF uploads referenced in the
SKILL.mduser prompt. - Boundary markers: Absent; the instructions do not employ delimiters or specific safety instructions to isolate the ingested contract text from the system instructions.
- Capability inventory: Analysis of
SKILL.mdand all files inreferences/confirms the skill is limited to text output and does not utilize any subprocess, filesystem, or network-enabled tools. - Sanitization: Absent; the skill does not perform validation, filtering, or escaping of the text extracted from the uploaded contracts.
Audit Metadata