content-strategy
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill workflow involves the ingestion and processing of untrusted data from external sources, which creates a surface for indirect prompt injection.
- Ingestion points: The agent is instructed in SKILL.md to research external platforms like Reddit and Quora and to analyze customer call transcripts provided by the user.
- Boundary markers: No specific delimiters or instructions to ignore commands within the ingested data are defined.
- Capability inventory: The agent utilizes web search for competitive and forum research; no script-based file access or command execution capabilities are included in the skill.
- Sanitization: The skill does not require the agent to sanitize or validate the content retrieved from external sources before analysis.
Audit Metadata