anime-calendar
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it processes untrusted content from external websites.
- Ingestion points: SKILL.md uses
extract_content_from_websitesandbatch_web_searchto retrieve data from bilibili.com, bgm.tv, and dmzj.com. - Boundary markers: Absent. The extraction prompt provided (
提取动漫更新时间表或新番列表信息) does not include instructions to ignore or delimit potentially malicious instructions within the retrieved content. - Capability inventory: The skill's capabilities are restricted to web searching and text extraction, with no evidence of file system access or arbitrary command execution.
- Sanitization: There is no specified logic for sanitizing or validating the integrity of the external data before it is presented to the agent.
Audit Metadata