google-search
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The script
scripts/search.pyperforms GET requests to Google's official Custom Search API (googleapis.com), which is a well-known service. - [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection because it retrieves and processes external content from the web.
- Ingestion points: Search results are fetched from the API and printed as JSON in
scripts/search.py. - Boundary markers: No delimiters or instructions to ignore embedded commands are provided in the script's output.
- Capability inventory: The skill utilizes the
requestslibrary for network access. - Sanitization: No filtering or sanitization of search results is implemented before the data is passed to the agent.
Audit Metadata