contract-analyzer
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill possesses a surface for indirect prompt injection because its core function is to ingest and process untrusted external documents (contracts).\n
- Ingestion points: User-provided contracts, agreements, or text blocks input into the agent as specified in the instructions.\n
- Boundary markers: Absent; there are no explicit delimiters or instructions to the model to ignore commands embedded within the document text.\n
- Capability inventory: Safe; the skill is entirely prompt-based and does not have the capability to execute code, access the file system, or perform network requests.\n
- Sanitization: Absent; the skill does not include any mechanism to sanitize or validate the content of the documents being analyzed.
Audit Metadata