Copilot Summary
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface as it processes untrusted data from CRM meeting transcripts and activity logs to generate summaries. This behavior is necessary for its primary function and no malicious instructions were found in the skill itself.
- Ingestion points: Data enters the context via
get_dealresults, contact records, activity timelines, and meeting transcripts. - Boundary markers: There are no explicit delimiters or instructions to ignore embedded commands within the fetched data.
- Capability inventory: The skill utilizes the
crmcapability for data retrieval. - Sanitization: No explicit sanitization or filtering of transcripts or email content is performed before summarization.
- [SAFE]: All identified external resources and actions are related to the core CRM functionality and the vendor's intended use case. No indicators of data exfiltration or persistence were found.
Audit Metadata