branding
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFE
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill is designed to process external documents (DOCX, PPTX, CSS, HTML), which serves as an ingestion point for untrusted data.
- Ingestion points: Target artifacts such as DOCX/PPTX XML, CSS, or HTML files mentioned in the workflow.
- Boundary markers: Absent; there are no specific instructions to ignore malicious content embedded within the files being branded.
- Capability inventory: The skill instructs the agent to update properties in target files, which implies a file-write capability.
- Sanitization: Absent; the skill does not specify validation or sanitization of the content within the artifacts before processing.
- [Safe] (SAFE): No instances of prompt injection, obfuscation, hardcoded credentials, or unauthorized network operations were found in the skill definition.
Audit Metadata