multi-model-meta-analysis
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [Prompt Injection] (LOW): The skill is susceptible to Indirect Prompt Injection. It is designed to ingest and parse untrusted text from other AI models which could contain instructions intended to override the agent's behavior. \n
- Ingestion points: Processes user-pasted analysis and feedback from multiple LLMs (SKILL.md). \n
- Boundary markers: Absent; the instructions do not define specific delimiters or warnings to ignore instructions embedded within the processed data. \n
- Capability inventory: The skill utilizes Grep, Glob, and Read tools to access and examine the local filesystem. \n
- Sanitization: Absent; no validation or escaping of the external model outputs is defined before processing. \n- [No Code] (SAFE): The skill contains no executable scripts, binaries, or third-party dependencies. It relies on standard environment tools and natural language instructions.
Audit Metadata