kleva-business
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill defines workflows that involve processing external data (LinkedIn campaigns, sales responses). While this creates an inherent attack surface for indirect prompt injection, the skill itself provides no tools for automated execution or data exfiltration, limiting the risk to the agent's internal reasoning and local documentation tasks.
- [Data Exposure] (INFO): The skill references sensitive local directories such as financial records and due diligence materials. This is contextual information for the agent and does not constitute a security violation, as no unauthorized access or exfiltration mechanisms are included.
Audit Metadata