meeting-notes-to-action-items
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [NO_CODE]: The analyzed skill is a pure prompt-based instruction set with no attached scripts, binaries, or configuration files.
- [PROMPT_INJECTION]: The skill processes untrusted meeting notes provided by the user, creating an indirect prompt injection surface. 1. Ingestion points: Meeting notes or transcripts ingested during the conversation. 2. Boundary markers: Absent; there are no specific delimiters defined to separate user data from instructions. 3. Capability inventory: None; the skill is limited to text generation and does not have access to subprocesses, the file system, or the network. 4. Sanitization: Absent; the skill relies on the underlying LLM's safety filters.
Audit Metadata