utm-parameter-generator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No instructions attempting to bypass safety filters or override system prompts were found. The language is focused on marketing analytics tasks.
- [Data Exposure & Exfiltration] (SAFE): No code for file system access or network requests is present. There are no hardcoded credentials or sensitive data patterns.
- [Remote Code Execution] (SAFE): The skill does not include any scripts, executable code, or package dependency files.
- [Indirect Prompt Injection] (LOW): The skill accepts user input for campaign details to generate UTM strings. However, since it lacks any functional capabilities like network access or command execution, the risk surface for indirect injection is effectively zero.
- [Metadata Poisoning] (SAFE): Metadata fields (name, description) accurately reflect the skill's purpose without deceptive instructions.
Audit Metadata