internal-comms
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill facilitates the ingestion of data from various communication channels which may contain malicious instructions designed to manipulate the agent. \n
- Ingestion points: Slack messages, Google Drive documents, Emails, and Calendar events (as specified in examples/3p-updates.md, examples/company-newsletter.md, and examples/faq-answers.md). \n
- Boundary markers: Absent. The instructions do not provide delimiters or warnings to the agent to treat external content as data only. \n
- Capability inventory: The skill leverages the agent's ability to read from Slack, Email, Google Drive, and Calendar tools. \n
- Sanitization: Absent. The workflow lacks steps to validate or sanitize content retrieved from external sources before inclusion in drafts. \n- [NO_CODE]: The skill consists exclusively of markdown instruction files and does not contain any executable scripts, binaries, or configuration files for package managers.
Audit Metadata