smartthings-api
Pass
Audited by Gen Agent Trust Hub on Feb 20, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): No patterns of instruction overriding, role-play jailbreaking, or system prompt extraction were detected in the skill instructions or metadata.
- Data Exposure & Exfiltration (SAFE): No hardcoded credentials, sensitive file paths (like ~/.ssh), or network exfiltration patterns were found.
- External Downloads (SAFE): The skill references official developer documentation at developer.smartthings.com. No executable scripts or packages are downloaded.
- Remote Code Execution (SAFE): No shell commands, pipe-to-bash patterns, or dynamic evaluation of external content were found.
- Indirect Prompt Injection (LOW):
- Ingestion points: The agent is instructed to read external content from URLs listed in
references/api-links.md. - Boundary markers: Absent; the skill does not explicitly tell the agent to ignore instructions embedded in the documentation.
- Capability inventory: The skill has no code execution capabilities, network POST capabilities, or file system write access.
- Sanitization: Absent.
- Risk Assessment: While the skill reads external data, the source (official SmartThings developer docs) is highly trusted and the skill lacks any dangerous capabilities that an injection could exploit.
Audit Metadata