pricing-strategy
Pass
Audited by Gen Agent Trust Hub on Apr 10, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits a potential surface for indirect prompt injection because it uses
WebSearchandWebFetchto ingest content from third-party websites (competitor pricing pages). While malicious instructions on these sites could theoretically influence the agent's behavior, the risk is mitigated as the skill's capabilities are restricted to generating a markdown document and do not include code execution or network exfiltration tools. - [DATA_EXFILTRATION]: The skill requests sensitive business data such as unit economics and cost structures. This data is handled within the context of the user-initiated pricing analysis and is not sent to any external or unauthorized destinations. The tools used (
Read,Glob,Grep) are restricted to reading project files for the purpose of the analysis.
Audit Metadata