discovery
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill processes untrusted user input ($1 and interview responses) without boundary markers or sanitization.
- Ingestion points: User context variable $1 and responses gathered via AskUserQuestion in SKILL.md.
- Boundary markers: Absent; user input is directly interpolated into instructions.
- Capability inventory: AskUserQuestion tool and instructions for the agent to use a bash date command.
- Sanitization: Absent; no escaping or validation of input data is performed.
Audit Metadata