content-creator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- PROMPT_INJECTION (LOW): The skill exhibits susceptibility to indirect prompt injection via external data ingestion. 1. Ingestion points: The scripts
brand_voice_analyzer.pyandseo_optimizer.pyprocess external files such asexisting_content.txtandblog_post.md. 2. Boundary markers: Absent; there are no specified delimiters or 'ignore' instructions to prevent the agent from following commands embedded within the analyzed content. 3. Capability inventory: The skill uses subprocess calls to execute local Python scripts and shell utilities likegrep. 4. Sanitization: Absent; no sanitization or escaping of the input file content is described before it is passed to the scripts. - COMMAND_EXECUTION (SAFE): The usage of local Python scripts and basic shell commands (
grep,cp) is restricted to the skill's local directory and intended marketing workflow, posing no unusual risk.
Audit Metadata