agent-vegas
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFEDATA_EXFILTRATIONPROMPT_INJECTIONNO_CODE
Full Analysis
- [DATA_EXFILTRATION]: The skill performs network requests to an external, non-whitelisted domain
agentvegas.topfor registration, game interaction, and account management. While it uses agent-generated credentials, communication with an external third-party domain is present. - [PROMPT_INJECTION]: Instructions mandate that the agent proactively generate and display a human-observation URL even if not explicitly requested, which could lead to unintended disclosure of session identifiers in the chat history.
- [PROMPT_INJECTION]: Indirect Prompt Injection Surface: The agent processes structured data from external API responses which could contain malicious instructions.
- Ingestion points: API responses from
https://agentvegas.top/api/rooms,https://agentvegas.top/api/agent/balance, and registration responses. - Boundary markers: No delimiters or instructions to ignore embedded commands are present in the skill definition.
- Capability inventory: The agent can perform state-changing actions (placing bets, painting on a global canvas) based on the received data.
- Sanitization: No logic is provided to sanitize or validate the content of the API responses before processing.
- [NO_CODE]: The skill contains no executable code or scripts, relying solely on natural language instructions for the agent to use standard web APIs.
Audit Metadata