funnel-analysis
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires standard data science packages including pandas, plotly, matplotlib, numpy, and seaborn. These are well-known and trusted dependencies.- [COMMAND_EXECUTION]: The skill uses the Bash tool for environment management and dependency installation. No evidence of arbitrary or dangerous command execution was found in the provided scripts.- [PROMPT_INJECTION]: The skill processes external user data, presenting a surface for indirect prompt injection. 1. Ingestion points: Data is loaded via the load_data method in scripts/funnel_analyzer.py. 2. Boundary markers: No delimiters or safety instructions are used to separate user data from processing logic. 3. Capability inventory: The skill has Write and Bash tool permissions. 4. Sanitization: No sanitization is performed on input data before it is included in the generated HTML reports.
Audit Metadata