docs-search
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches documentation text files from official Toss domains, specifically developers-apps-in-toss.toss.im and tossmini-docs.toss.im. These are trusted vendor domains used for legitimate content retrieval.
- [PROMPT_INJECTION]: The skill processes external documentation content which could theoretically contain instructions intended to influence agent behavior (Indirect Prompt Injection). As the sources are official vendor guides, this risk is considered a standard operational characteristic rather than a vulnerability.
Audit Metadata