scout
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [No Code] (SAFE): The skill contains only metadata and markdown instructions for the agent and does not ship with any scripts, binaries, or executable components.
- [Indirect Prompt Injection] (SAFE): The skill's primary function is to ingest untrusted data from the web, creating a potential surface for indirect injection. However, this is inherent to the tool's monitoring purpose and no malicious patterns are present.
- Ingestion points: Processes data from external web sources such as news sites, SEC filings, and social media through the create_scout tool.
- Boundary markers: The skill encourages structured queries with specific sections (Context, What to Monitor, Deliverables), which helps organize ingested data.
- Capability inventory: Relies on external tools create_scout and edit_scout for network operations and scheduled tasks.
- Sanitization: No explicit sanitization or filtering logic is provided within the skill instructions, which is standard for monitoring-based agent skills.
Audit Metadata