sales-zerobounce
Pass
Audited by Gen Agent Trust Hub on Apr 4, 2026
Risk Level: SAFEPROMPT_INJECTIONREMOTE_CODE_EXECUTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill accepts and processes natural language input from users to provide platform guidance, which presents a surface for indirect prompt injection.
- Ingestion points: User-provided descriptions of their requirements in the context gathering step of SKILL.md.
- Boundary markers: Absent; user input is processed directly without the use of delimiters or instructions to ignore embedded commands.
- Capability inventory: The skill is primarily instructional and does not define tools for automated code execution or file system modification.
- Sanitization: Absent; there is no evidence of filtering or validation for the user-supplied content.
- [REMOTE_CODE_EXECUTION]: The documentation includes a command to install a supplementary tool from the vendor using a package runner, which involves downloading and executing remote content.
- Evidence: The skill suggests running "npx skills add sales-skills/sales --skills sales-do" to install related functionality.
- [NO_CODE]: The skill consists entirely of instructional markdown and reference data; it does not include any executable scripts or binary files.
Audit Metadata