realgeeks-sync
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill implements industry-standard security practices for webhook processing, including HMAC-SHA256 signature validation and the use of constant-time comparisons to mitigate timing attacks.
- [COMMAND_EXECUTION]: The skill requests permissions for powerful system tools such as Bash, Write, and Edit. While these tools are consistent with the skill's purpose of automating integration workflows, they provide a broad capability set.
- [PROMPT_INJECTION]: The skill architecture is designed to ingest and process data from external webhooks, which introduces a surface for indirect prompt injection.
- Ingestion points: RealGeeks CRM webhook payloads received via HTTP POST.
- Boundary markers: Source authenticity is verified using cryptographic signatures.
- Capability inventory: The agent has access to Bash and file system tools (Write, Edit).
- Sanitization: Implementation patterns include data normalization for fields like phone numbers, but do not provide specific patterns for sanitizing external content before it is processed by the AI agent context.
Audit Metadata