Testimonial Collector
Warn
Audited by Gen Agent Trust Hub on Feb 14, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (MEDIUM): The skill instructions in SKILL.md suggest installing 'afrexai-review-responder' and 'afrexai-email-crafter' using a 'clawhub' command. The 'afrexai' developer is not a trusted source, presenting a supply chain risk.
- [PROMPT_INJECTION] (LOW): The skill processes untrusted customer testimonials in its 'Format' and 'Audit' features (SKILL.md), creating an indirect prompt injection surface. 1. Ingestion points: Raw testimonial text. 2. Boundary markers: Absent. 3. Capability inventory: Limited to text formatting; no high-privilege operations (network, file, or shell) are enabled. 4. Sanitization: None.
- [External References] (INFO): Directs users to an external GitHub Pages site for paid content packs.
Audit Metadata