onboarding-cro
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFENO_CODE
Full Analysis
- No Code (SAFE): The skill consists entirely of Markdown text for documentation and instructional guidance. No scripts, shell commands, or dependencies are present.
- Indirect Prompt Injection (SAFE): The skill includes an instruction to read a local context file (.claude/product-marketing-context.md) to personalize the user experience. Ingestion points: .claude/product-marketing-context.md. Boundary markers: Absent. Capability inventory: None. Sanitization: Absent. This is a common and low-risk pattern for improving agent context and does not involve sensitive system paths.
Audit Metadata