Skills
skills/umbraco/umbraco-cms-backoffice-skills/umbraco-property-value-preset/Gen Agent Trust Hub

umbraco-property-value-preset

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
  • EXTERNAL_DOWNLOADS (SAFE): The skill utilizes WebFetch to download documentation from docs.umbraco.com. This is a legitimate use of an official, trustworthy documentation source for the skill's primary function.\n- SAFE (SAFE): No evidence of malicious behavior, credential exposure, or persistence mechanisms was found. The skill operates as described by assisting with CMS extension development.\n- Indirect Prompt Injection (LOW): The skill ingests data from external URLs, creating a surface for indirect prompt injection if the documentation site were compromised. Findings: 1. Ingestion points: Documentation URLs in SKILL.md. 2. Boundary markers: Absent. 3. Capability inventory: Write and Edit tools for local code generation. 4. Sanitization: Absent.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 05:56 PM