tender-analyzer
Pass
Audited by Gen Agent Trust Hub on Apr 27, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill processes external tender documents which could contain malicious instructions designed to manipulate the AI. The instructions mitigate this risk by explicitly telling the agent to treat parsed content as data and to ignore any instructions found within the document. Ingestion points: User-provided files are read and processed by the
tender_analyzer.pyscript. Boundary markers: The instructions contain an explicit warning for the AI. Capability inventory: The skill has file-system access and network connectivity for its parsing function. Sanitization: No programmatic sanitization is applied to the extracted text. - [EXTERNAL_DOWNLOADS]: The
tender_analyzer.pyscript communicates with the SoMark API atsomark.tech. This is the vendor's official service and is necessary for the skill's primary function of parsing complex document formats.
Audit Metadata