interswitch-payouts
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes data from external API responses, creating a surface for indirect prompt injection. If the API returns malicious strings within fields like 'channelName' or 'institutionName', it could influence agent behavior.
- Ingestion points: getPayoutChannels, getReceivingInstitutions, and getInstitutionDetails functions in SKILL.md ingest external JSON data.
- Boundary markers: There are no explicit delimiters or 'ignore' instructions wrapping the external data before it's processed by the agent.
- Capability inventory: The skill performs network requests (fetch) and logic-based routing based on external input.
- Sanitization: The code correctly uses encodeURIComponent and URL.searchParams for request construction, though it does not sanitize the content of the API response itself.
Audit Metadata