product-review-analysis
Pass
Audited by Gen Agent Trust Hub on Mar 24, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: Indirect prompt injection vulnerability surface detected.
- Ingestion points: The skill is designed to aggregate and analyze product reviews from various e-commerce platforms (Amazon, Etsy, Shopify, etc.), which are untrusted external data sources.
- Boundary markers: The instructions lack explicit delimiters or 'ignore' instructions to prevent the agent from being influenced by malicious commands embedded within the reviews.
- Capability inventory: No dangerous capabilities such as arbitrary command execution, file system modifications, or non-whitelisted network operations were identified in the skill's instructions.
- Sanitization: No evidence of input sanitization or filtering of processed review content was found.
Audit Metadata