signup-flow-cro
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE] (SAFE): No security issues were identified. The skill acts as a set of behavioral instructions for an AI agent to provide UX/UI optimization advice.
- [Indirect Prompt Injection] (LOW): This skill has a surface for indirect prompt injection as it ingests untrusted data. Evidence Chain: 1. Ingestion points: .claude/product-marketing-context.md (referenced in initial assessment). 2. Boundary markers: Absent. 3. Capability inventory: None (Instructional content only; no subprocesses, network, or file-write operations). 4. Sanitization: Absent. Because the skill lacks any execution or exfiltration capabilities, the severity is rated as SAFE/LOW.
Audit Metadata