cpo
Pass
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: The skill possesses an indirect prompt injection attack surface.
- Ingestion points: The skill is instructed to use
WebSearchandWebFetchto gather information from external sites such as Reddit, G2, and Capterra, as well asReadexisting local artifacts. - Boundary markers: The instructions do not define clear boundaries or provide warnings to the agent to ignore instructions embedded within the fetched external data.
- Capability inventory: The skill has permission to
Writefiles todocs/product/andEdittheHUMAN_AGENDA.mdfile based on its analysis. - Sanitization: There is no explicit sanitization or validation of the content retrieved from external URLs before it is processed by the agent.
- [EXTERNAL_DOWNLOADS]: The skill performs network operations to retrieve data from external sources.
- It fetches product information and user reviews from well-known platforms like Reddit, G2, Capterra, and TrustRadius to identify market gaps and user needs.
Audit Metadata