page-cro
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [No Code] (SAFE): The skill consists entirely of markdown instructions and does not include any scripts, executables, or package configuration files.
- [Prompt Injection] (SAFE): No malicious instructions such as 'ignore previous rules', 'DAN', or system prompt extraction were detected. The role-play instruction is focused on the professional domain of CRO.
- [Indirect Prompt Injection] (SAFE): The skill is designed to ingest and analyze external web content which is a potential attack surface for indirect prompt injection.
- Ingestion points: External page source via URL or user-provided content (SKILL.md, Step 1).
- Boundary markers: Absent; the prompt does not specify delimiters to separate untrusted web content from analysis instructions.
- Capability inventory: The skill only performs analysis and generates reports; it does not have access to shell commands, file writing, or network sending tools within its own instructions.
- Sanitization: Absent; there are no instructions to sanitize or escape the ingested page source.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, sensitive file path access, or unauthorized network calls are present. All requested information (URL, traffic data) is standard for the stated task of landing page auditing.
Audit Metadata