options-strategy-advisor
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: Potential surface for indirect prompt injection. The skill processes external data from ticker symbols and the Financial Modeling Prep API which are then displayed in reports and used in network requests.
- Ingestion points: User-provided ticker symbols and financial data returned from the FMP API in
scripts/black_scholes.py. - Boundary markers: Absent. The skill does not utilize delimiters or instructional warnings to separate external data from system instructions.
- Capability inventory: Network communication capabilities via the
requestslibrary to fetch market data. - Sanitization: Absent. Ticker symbols are interpolated directly into API request URLs without validation or escaping.
- [EXTERNAL_DOWNLOADS]: Fetches financial market data from Financial Modeling Prep, a well-known technology service for financial data.
- URL:
https://financialmodelingprep.com/api/v3/historical-price-full/{symbol}used inscripts/black_scholes.py. - URL:
https://financialmodelingprep.com/api/v3/quote/{symbol}used inscripts/black_scholes.py. - URL:
https://financialmodelingprep.com/api/v3/profile/{symbol}used inscripts/black_scholes.py.
Audit Metadata