web-search
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Indirect Prompt Injection (SAFE): The skill ingests untrusted data from the web via the online_search tool. While this creates a potential surface for indirect prompt injection, the skill lacks high-risk capabilities like file writing or code execution. 1. Ingestion points: online_search tool output. 2. Boundary markers: None explicitly defined. 3. Capability inventory: No dangerous system calls, file operations, or raw network requests beyond the intended tool use. 4. Sanitization: Not specified.
Audit Metadata