zoom
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill uses the
reflyCLI to execute tasks, which is the standard and expected method for this platform. - [Indirect Prompt Injection] (LOW): The skill accepts user-provided meeting topics and agendas. This provides an attack surface for indirect prompt injection, though it is a necessary part of the skill's function. 1. Ingestion points:
meeting_topic,participant_emails, andmeeting_agendadefined inSKILL.md. 2. Boundary markers: None. 3. Capability inventory: Command execution viarefly skill run. 4. Sanitization: No sanitization is performed on user inputs before they are passed to the CLI.
Audit Metadata