skills/umbraco/umbraco-cms-backoffice-skills/umbraco-monaco-markdown-editor-action/Gen Agent Trust Hub
umbraco-monaco-markdown-editor-action
Fail
Audited by Gen Agent Trust Hub on Feb 15, 2026
Risk Level: HIGHPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [Indirect Prompt Injection] (HIGH): The skill workflow involves fetching external content and using it to generate files. -- Ingestion points: Documentation URLs (docs.umbraco.com) are fetched via the WebFetch tool. -- Boundary markers: Absent; the skill does not define delimiters to distinguish external data from instructions. -- Capability inventory: The skill possesses Write and Edit permissions, allowing it to modify the local file system based on retrieved data. -- Sanitization: Absent; no validation or sanitization is performed on the fetched content before code generation.
- [External Downloads] (MEDIUM): The skill connects to non-whitelisted external domains (docs.umbraco.com) to retrieve documentation. While the source is official, the lack of integrity verification for the retrieved content presents a risk.
Recommendations
- AI detected serious security threats
Audit Metadata