humanizer
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it processes untrusted external text. A maliciously crafted input could attempt to subvert the agent's instructions to perform unauthorized actions. Ingestion points: Input text provided for humanization (processed in Phase 1 and 2). Boundary markers: Absent; no specific delimiters or instruction-ignore warnings are defined for the input content. Capability inventory: Access to Read, Write, Edit, Glob, Grep, and AskUserQuestion tools. Sanitization: No sanitization or input validation is performed.
- [COMMAND_EXECUTION]: The skill is granted access to tools such as Edit and Write to modify local files. This capability increases the risk of the indirect prompt injection surface, as the agent can be manipulated into modifying the local environment based on instructions embedded within the processed text.
Audit Metadata