Skills
skills/umbraco/umbraco-cms-backoffice-skills/umbraco-collection-action/Gen Agent Trust Hub

umbraco-collection-action

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS] (LOW): The skill utilizes the WebFetch tool to retrieve documentation from docs.umbraco.com. While these are legitimate documentation sites, fetching external content is a prerequisite for indirect injection attacks.
  • [PROMPT_INJECTION] (LOW): Indirect Prompt Injection Surface. The workflow ingests external data to automate file generation using Write and Edit tools.
  • Ingestion points: Documentation URLs in SKILL.md accessed via WebFetch tool.
  • Boundary markers: No delimiters or instructions are provided to the agent to treat fetched content as untrusted.
  • Capability inventory: The skill is granted Write and Edit permissions, allowing it to create or modify local files based on external input.
  • Sanitization: There is no mechanism to validate or sanitize the fetched documentation before it influences code generation.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 05:58 PM