product-marketing-context
Pass
Audited by Gen Agent Trust Hub on Feb 26, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection because it automatically ingests and processes untrusted data from the codebase to generate marketing drafts.
- Ingestion points: The skill reads various repository files including
README,landing pages,marketing copy,about pages, andpackage.jsonin the 'Auto-draft from codebase' step. - Boundary markers: There are no explicit instructions to use delimiters or ignore embedded instructions when reading these external files.
- Capability inventory: The skill possesses file system write capabilities, specifically creating and updating the
.claude/product-marketing-context.mdfile. - Sanitization: No sanitization or filtering logic is defined for the content extracted from the codebase before it is interpolated into the drafting process.
Audit Metadata