analytics-tracking
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: Indirect Prompt Injection Surface\n
- Ingestion points: The skill reads content from
.claude/product-marketing-context.mdinSKILL.mdto inform its initial assessment.\n - Boundary markers: No delimiters or safety instructions are provided to the agent to ignore potentially malicious instructions embedded within the ingested context file.\n
- Capability inventory: No dangerous capabilities such as subprocess execution, network operations, or file system modifications are present in the skill's own instructions or references.\n
- Sanitization: The skill does not include any mechanisms to validate, filter, or sanitize the information read from external context files.
Audit Metadata