website-strategist
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists of informational markdown files and does not include any executable scripts, shell commands, or package dependencies.
- [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection (Category 8) because it processes external data from the web.
- Ingestion points: External data is ingested via the
web_searchcapability used for competitive intelligence in Phase 2 and through thecompetitorsinput array. - Boundary markers: There are no explicit markers or instructions provided to separate retrieved web content from the core logic of the skill.
- Capability inventory: The skill is restricted to
web_searchand text generation. It lacks the ability to write to the file system, execute arbitrary code, or perform unauthorized network requests. - Sanitization: The skill does not implement specific sanitization for data retrieved from external URLs before it is synthesized into the final strategy report.
Audit Metadata