content-strategy
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill instructions create a surface for indirect prompt injection by requiring the agent to analyze external, untrusted data.
- Ingestion points: The skill (SKILL.md) directs the agent to read local marketing context files and process user-provided keyword exports, sales call transcripts, survey data, and research results from web searches on platforms like Reddit and Quora.
- Boundary markers: No specific delimiters or instructions to ignore embedded commands within the analyzed data are provided in the skill body.
- Capability inventory: The skill is a pure markdown instruction set and contains no Python or Node.js code, nor any shell scripts.
- Sanitization: No methods for sanitizing, escaping, or validating the input from external data sources are defined in the skill.
Audit Metadata