daily-outlook-triage
Pass
Audited by Gen Agent Trust Hub on Mar 27, 2026
Risk Level: SAFE
Full Analysis
- [Sensitive Data Access]: The skill accesses the user's profile, email inbox, and calendar events. This data is handled within the context of the agent to generate a triage summary, which is the primary purpose of the skill.
- [Indirect Prompt Injection Consideration]: Because the skill processes incoming emails and calendar invites, it is exposed to untrusted external content. While such content could theoretically contain instructions to influence the agent, the risk is minimized as the skill is limited to summarizing data and does not perform high-risk actions based on the content of those messages.
- [Use of Local Tooling]: The skill relies on the
workiq-ask_work_iqtool to interact with Microsoft Graph. This is a standard method for accessing professional productivity data in a managed environment.
Audit Metadata