daily-briefing
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill coordinates with local command-line interfaces including apple-reminders, outlook-cli, and things-mac to gather the user's schedule and tasks for the briefing.
- [EXTERNAL_DOWNLOADS]: Retrieves weather data from the well-known wttr.in service and news highlights via external search skills.
- [DATA_EXFILTRATION]: Accesses sensitive personal data such as calendar events and reminders. This access is necessary for the skill's primary function and occurs locally without evidence of transmission to unauthorized external domains.
- [INDIRECT_PROMPT_INJECTION]: The skill processes news headlines and highlights from search results, which constitutes an ingestion surface for untrusted data. Ingestion points: News highlight content retrieved from search skills. Boundary markers: None explicitly defined in the briefing template for news items. Capability inventory: The skill is limited to data aggregation and display, with no capabilities for file modification or arbitrary command execution based on news content. Sanitization: No specific sanitization or validation of news content is described.
Audit Metadata