ecommerce-keyword-research
Pass
Audited by Gen Agent Trust Hub on Mar 24, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill documentation provides an installation command using
npxto fetch resources from the author's repository (nexscope-ai/eCommerce-Skills). This is a standard distribution method for this vendor's tools. - [PROMPT_INJECTION]: The skill processes user-provided information about products and goals (Step 1). It lacks explicit boundary markers or instructions to ignore embedded commands within user data, creating a potential surface for indirect prompt injection common to interaction-based agents.
Audit Metadata