Academic Figure Prompt
Pass
Audited by Gen Agent Trust Hub on Mar 19, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted data from external sources such as academic papers in LaTeX, PDF, and Word formats, which creates a vulnerability surface for indirect prompt injection.
- Ingestion points: External academic documents are parsed as described in Step 1 of the workflow.
- Boundary markers: No explicit delimiters or instructions to ignore embedded commands within the ingested content are present.
- Capability inventory: The skill metadata declares access to the
bashtool, representing a high-capability environment. - Sanitization: No specific filtering or sanitization of the input text from documents is defined.
- [EXTERNAL_DOWNLOADS]: The skill provides links to several well-known third-party design and color tools including Adobe Color, Coolors, ColorBrewer, and ColorHunt. These are recognized as reputable technology services and are used here for legitimate configuration purposes.
- [SAFE]: No evidence of malicious command execution, data exfiltration patterns, hardcoded credentials, or obfuscation techniques was identified within the instructions.
Audit Metadata