openclaw-tour-planner
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches geocoding data, weather forecasts, and travel guide extracts from Nominatim (OpenStreetMap), Open-Meteo, and Wikivoyage. These are well-known technology and community-run services suitable for travel planning.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it ingests untrusted data from external sources.
- Ingestion points: Fetches travel guide text from the Wikivoyage MediaWiki API in
src/apis/wikivoyage.ts. - Boundary markers: The output formatter in
src/utils/formatter.tsorganizes the data into Markdown sections but does not wrap external content in explicit delimiters or provide instructions to the agent to ignore embedded commands. - Capability inventory: The skill has network-read and local-cache-write capabilities. It does not possess administrative or system-level execution capabilities.
- Sanitization: The skill truncates fetched descriptions to specific character lengths (e.g., 150-800 characters) but does not perform content-based sanitization or filtering for instructional patterns.
Audit Metadata