newsletter-sponsorship-finder
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface by ingesting untrusted data from external sources including newsletter directories, search results, and Substack API data. This data is used to enrich lead information and rank targets.\n
- Ingestion points: Phase 3 (SKILL.md) and search_newsletters.py ingest data from external newsletter websites and the Substack API.\n
- Boundary markers: No specific delimiters or warnings are used to isolate untrusted external content from the agent's instructions.\n
- Capability inventory: The skill is capable of performing file-write operations to the local filesystem (SKILL.md Phase 5).\n
- Sanitization: The skill does not perform sanitization or filtering of the content retrieved from external sources before it is processed by the agent.
Audit Metadata