operations-manager
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill contains a vulnerability surface for indirect prompt injection by ingesting data from an external source.\n
- Ingestion points: The agent is instructed to read the JSON-LD graph from
https://wazoo.devto synchronize with company details (SKILL.md).\n - Boundary markers: There are no specified delimiters or instructions to ignore embedded commands within the fetched external content.\n
- Capability inventory: The skill is authorized to perform workflow optimization, bottleneck resolution, and implement hard gates for high-stakes deliverables (SKILL.md).\n
- Sanitization: The instructions do not define any sanitization, validation, or filtering of the retrieved JSON-LD data.
Audit Metadata