Skills
skills/lyndonkl/claude/mlb-regression-flagger/Gen Agent Trust Hub

mlb-regression-flagger

Pass

Audited by Gen Agent Trust Hub on Apr 19, 2026

Risk Level: SAFENO_CODEPROMPT_INJECTION
Full Analysis
  • [SAFE]: The skill performs legitimate Major League Baseball data analysis using reputable sites such as Baseball Savant and FanGraphs.
  • [NO_CODE]: The skill consists entirely of Markdown and JSON configuration files and contains no executable scripts or programming code.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection due to its reliance on external data.
  • Ingestion points: The skill instructions in SKILL.md and resources/methodology.md specify performing web searches to retrieve player statistics and text-based metrics from Baseball Savant and FanGraphs.
  • Boundary markers: The skill lacks explicit delimiters or instructions to ignore potential commands embedded within the retrieved external data.
  • Capability inventory: The skill directs the agent to generate and write signal files to the local filesystem within the signals/ directory.
  • Sanitization: There is no provision for sanitizing or validating text data (such as player names or profile text) retrieved from the external websites before it is processed.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 19, 2026, 01:26 PM