message-reply
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues detected. The skill's functionality is limited to text analysis and generation.- [DATA_EXPOSURE]: The skill contains personally identifiable information (PII) such as the user's name, email, and phone number in the references/user-profile.md file. This information is used for personalizing communication drafts and is considered legitimate context for the skill's purpose.- [PROMPT_INJECTION]: The skill consumes untrusted external data (the received_message input). However, because the agent does not possess dangerous capabilities like network access, file system modification, or code execution, the potential impact of indirect prompt injection is nonexistent.
Audit Metadata