raffle-winner-picker
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION] (LOW): Indirect Prompt Injection vulnerability surface. The skill processes external data that could contain malicious instructions designed to manipulate the agent.
- Ingestion points: Data is ingested from external Google Sheet URLs and local files (CSV, XLSX) as described in
SKILL.md. - Boundary markers: Absent. The skill does not provide the agent with delimiters or instructions to ignore commands potentially embedded within cell values (e.g., names or comments).
- Capability inventory: The skill performs file reading and network requests to access spreadsheet data.
- Sanitization: Absent. No validation or escaping of external content is specified before the AI interpolates it into the workflow.
Audit Metadata