comps-analysis
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFE
Full Analysis
- [DYNAMIC_EXECUTION]: The skill instructs the agent to generate and execute JavaScript (Office JS) or Python code (using
openpyxl) to build and format Excel spreadsheets. This is the primary and intended functionality of the skill. - [INDIRECT_PROMPT_INJECTION]: The skill processes financial data from external sources (such as FactSet, Daloopa, or user-uploaded files) to generate structured output. While this represents a data ingestion surface, the skill includes rigorous formatting and formula-based validation requirements that mitigate the risk of processing malicious instructions embedded in data.
Audit Metadata