skills/sickn33/antigravity-awesome-skills/startup-business-analyst-market-opportunity/Gen Agent Trust Hub
startup-business-analyst-market-opportunity
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface due to its interaction with untrusted external web content. 1. Ingestion points: Data enters the context via the WebSearch and WebFetch tools during market research (Step 4). 2. Boundary markers: The instructions do not define delimiters or provide specific prompts to ignore instructions contained within the fetched market data. 3. Capability inventory: The skill metadata allows the use of Bash, Write, Edit, Read, and Grep tools. 4. Sanitization: No sanitization or validation logic is specified for the content retrieved from external sources.
- [COMMAND_EXECUTION]: The skill metadata grants access to the Bash tool. While not explicitly used for malicious purposes in the provided instructions, the presence of a shell execution environment increases the potential impact if the agent is compromised by malicious external data.
Audit Metadata