copy-review
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: No evidence of malicious behavior, credential theft, or unauthorized data exfiltration was detected across the skill files. The skill operates exclusively on text inputs and outputs a markdown table.\n- [PROMPT_INJECTION]: The skill's design involves processing external data which creates an indirect prompt injection vulnerability surface. 1. Ingestion points: The 'content' and 'style_guide' input parameters defined in SKILL.md and used in references/workflow.md. 2. Boundary markers: Principle 3 in references/workflow.md instructs the agent to skip code blocks, frontmatter, and structural markup, providing a partial boundary. 3. Capability inventory: Analysis of all files reveals no subprocess execution, network operations, or file system access capabilities. 4. Sanitization: No programmatic sanitization or input filtering is implemented for the content or style guide inputs.
Audit Metadata