competitor-monitoring-system
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill presents a surface for indirect prompt injection (Category 8) by processing external, potentially attacker-controlled data.
- Ingestion points: Data is ingested from various third-party platforms using tools like blog-scraper, review-scraper, twitter-scraper, and ad scrapers (SKILL.md).
- Boundary markers: The instructions do not include boundary markers or explicit guidance for the agent to ignore instructions embedded within the scraped content.
- Capability inventory: The agent is tasked with analyzing this external data to flag changes and generate "Recommended Actions" and "Intelligence Reports" (SKILL.md).
- Sanitization: There is no mention of sanitizing, escaping, or validating the integrity of the scraped content before it is processed by the agent's reasoning engine.
Audit Metadata