mediation-dispute-analysis
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill has an attack surface for indirect prompt injection due to its requirement to process untrusted external data as part of its primary function.
- Ingestion points: User-uploaded case materials, including pleadings, contracts, and correspondence, are ingested for detailed analysis as specified in the 'Mode B: Direct Analysis' section of SKILL.md.
- Boundary markers: The skill instructions do not define or implement delimiters (e.g., XML tags or clear section separators) or instructions to disregard embedded commands within the ingested data.
- Capability inventory: The skill possesses the capability to generate formal Word documents via the 'docx' skill and read file contents, allowing potential injections to influence report generation.
- Sanitization: There is no evidence of input validation, filtering, or escaping of user-provided text before it is interpolated into the agent's context for analysis.
Audit Metadata