referral-program
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill uses a local file for context gathering, creating a surface for indirect prompt injection. Ingestion points: .claude/product-marketing-context.md referenced in SKILL.md. Boundary markers: Absent. Capability inventory: No high-risk capabilities such as command execution or network access are present. Sanitization: Absent.
- [SAFE]: No executable code, shell scripts, or binary files are included.
- [SAFE]: No hardcoded secrets, API keys, or sensitive credential paths were detected.
Audit Metadata