building-sales-team
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- NO_CODE (SAFE): The skill is composed entirely of Markdown documentation and JSON configuration files. No Python, JavaScript, or shell scripts are included, which eliminates risks associated with code execution or malicious software.
- SAFE (SAFE): A comprehensive scan across all threat categories—including data exfiltration, obfuscation, privilege escalation, and persistence—yielded no suspicious patterns or malicious instructions.
- PROMPT_INJECTION (SAFE): (Category 8: Indirect Prompt Injection) While the skill processes user-supplied business context (e.g., funnel metrics and ICP descriptions), its function is limited to generating Markdown deliverables. Evidence Chain: 1. Ingestion points: User inputs via INTAKE.md; 2. Boundary markers: Absent; 3. Capability inventory: Pure text generation; 4. Sanitization: Absent. The lack of active capabilities (no file-write, no network, no subprocess) makes the surface for exploitation negligible.
Audit Metadata