content-repurposer
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill instructions create an attack surface for indirect prompt injection by directing the agent to process content from untrusted external sources.
- Ingestion points: Step 1 facilitates the intake of long-form content through pasted text, file paths, and external URLs (SKILL.md).
- Boundary markers: The skill lacks explicit instructions for the agent to use delimiters or ignore potentially malicious instructions embedded within the source material.
- Capability inventory: The workflow relies on the agent's ability to read local files and perform network requests to fetch external web content (SKILL.md).
- Sanitization: There are no documented procedures for validating or sanitizing the ingested content before it is processed by the language model.
- [NO_CODE]: The skill does not contain any executable scripts, compiled binaries, or package dependency files. Its functionality is defined purely through natural language instructions.
Audit Metadata