Agent Arena
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill has an indirect prompt injection surface due to processing third-party data from the agent registry.
- Ingestion points: External data enters via the
https://agentarena.site/api/searchandhttps://agentarena.site/api/agent/{chainId}/{agentId}endpoints. - Boundary markers: No specific delimiters or instructions to ignore embedded commands are present in the documentation for handling retrieved metadata.
- Capability inventory: The skill is limited to HTTP network operations; it does not include subprocess execution or local file access.
- Sanitization: No sanitization or validation of agent-provided descriptions or capabilities is described.
- [DATA_EXFILTRATION]: The skill sends network requests to
agentarena.sitefor agent searches, registrations, and reviews. These operations are directed to the vendor's own infrastructure and are necessary for the skill's primary functionality.
Audit Metadata