social-orchestrator
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues were detected. The skill consists entirely of instructional markdown and configuration metadata. It lacks executable code, scripts, or direct system access patterns.- [PROMPT_INJECTION]: The instructions do not contain safety filter bypasses or attempts to override agent constraints. The persona defined is appropriate for the stated purpose.- [DATA_EXFILTRATION]: There is no access to sensitive files or environmental data. No hardcoded credentials or unauthorized network exfiltration patterns were found.
- [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection as it processes user-provided content to be published via downstream tools. Ingestion points: User-provided text and media input in /Publish_All and /Campaign flows. Boundary markers: Absent. Capability inventory: Use of external platform skills (Instagram, Telegram, WhatsApp) for network operations. Sanitization: Absent. This surface is inherent to the orchestration task and is considered a low functional risk.
Audit Metadata