signup-flow-cro
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or high-risk behaviors were detected. The skill is designed to provide conversion rate optimization (CRO) recommendations for registration forms.
- [PROMPT_INJECTION]: The skill uses a local file .claude/product-marketing-context.md to inform its responses. This creates a surface for indirect prompt injection if an attacker can control that file. However, this is evaluated as safe because the skill is restricted to generating text advice and has no functional capabilities like network access, file writing, or command execution that could be exploited. Ingestion points: .claude/product-marketing-context.md; Boundary markers: None; Capability inventory: None; Sanitization: None.
Audit Metadata