interview
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONDATA_EXFILTRATIONNO_CODE
Full Analysis
- PROMPT_INJECTION (LOW): The skill identifies a surface for indirect prompt injection as it processes external documentation and web content during its preparation phase. \n
- Ingestion points: Processes user-provided files, documentation URLs, and web research results as specified in SKILL.md. \n
- Boundary markers: No specific delimiters or safety instructions are defined to separate untrusted external content from agent instructions. \n
- Capability inventory: Employs codebase search (grep, rg), file reading (cat, read), and web research capabilities. \n
- Sanitization: No evidence of input validation or sanitization for external content.\n- DATA_EXFILTRATION (LOW): The skill's workflow includes "Web Research" which involves network requests to non-whitelisted external domains.\n- NO_CODE (SAFE): The skill does not contain any executable scripts or binary files. All instructions are provided in markdown format.
Audit Metadata