course-difficulty-concern
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill processes customer inquiries which introduces an indirect prompt injection surface. Ingestion points: User questions enter the agent context as described in references/canonical.md and references/real-responses.md. Boundary markers: None identified; no explicit delimiters or instructions to ignore embedded commands are present in the sample responses. Capability inventory: None; the skill contains no executable scripts or system-level capabilities. Sanitization: No evidence of input sanitization or validation of user-provided content is present in the provided files.
- [NO_CODE]: The skill consists entirely of Markdown and YAML documentation. No executable scripts, binaries, or configurations for external code execution are included in the skill package.
Audit Metadata