rental-property
Pass
Audited by Gen Agent Trust Hub on Apr 14, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill is entirely task-oriented and provides a structured workflow for data analysis using established internal tools.
- [DATA_EXFILTRATION]: No network calls or unauthorized data transfers to external domains were identified.
- [REMOTE_CODE_EXECUTION]: The skill does not download or execute any external scripts or packages.
- [PROMPT_INJECTION]: The skill was evaluated for potential indirect prompt injection vulnerabilities due to its reliance on external financial data. 1. Ingestion points: The skill processes bank transaction descriptions and vendor names retrieved via tool calls. 2. Boundary markers: Not specified in the current workflow instructions. 3. Capability inventory: Data processing is limited to aggregation, mathematical calculation, and transaction export within the agent environment. 4. Sanitization: Not explicitly defined, but the risk is mitigated by the specific and restricted nature of the financial analysis tasks.
Audit Metadata