Skills
skills/pauljbernard/content/standards-compliance-training/Gen Agent Trust Hub

standards-compliance-training

Fail

Audited by Gen Agent Trust Hub on Feb 16, 2026

Risk Level: HIGHPROMPT_INJECTION
Full Analysis
  • PROMPT_INJECTION (HIGH): The skill is designed to ingest and process external content ('training programs', 'regulatory requirements', 'content') to verify compliance. This constitutes a significant Indirect Prompt Injection surface.
  • Ingestion points: The 'content' parameter in skill.py and various CLI flags like --training, --program, and --content in SKILL.md accept external data.
  • Boundary markers: None detected. There are no instructions to the agent to disregard embedded commands in the training materials it analyzes.
  • Capability inventory: While skill.py is currently a stub, the SKILL.md documentation describes complex file system operations ('safety-program/', 'hospital-orientation/').
  • Sanitization: None detected in the provided code.
  • COMMAND_EXECUTION (MEDIUM): The SKILL.md defines a CLI interface that implies the ability to execute file-system level audits and report generation, which may lead to unauthorized file access if not properly scoped.
  • NO_CODE (LOW): The skill.py file contains undefined variables (skill_dir) that are not initialized or imported, which will result in a NameError at runtime. This indicates the skill is either incomplete or poorly tested.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Feb 16, 2026, 02:45 AM