iot-engineer
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [General Analysis] (SAFE): The skill functions as a domain-expert persona for IoT engineering. It contains no executable scripts, shell commands, or network-active code.
- [Prompt Injection] (SAFE): No instructions to override system prompts or bypass safety filters were found. The instructional language is standard for a technical guide.
- [Data Exposure & Exfiltration] (SAFE): There is no access to sensitive file paths or attempts to transmit data to external domains. The skill actually warns against hardcoding AWS keys or Wi-Fi passwords.
- [Unverifiable Dependencies & Remote Code Execution] (SAFE): No package managers (npm, pip) or remote script downloads (curl | bash) are utilized. The provided C++ code snippets are for embedded firmware development and are not executed in the local environment.
- [Security Best Practices]: The skill demonstrates positive security posture by listing 'Red Flags' for the user to escalate to a security engineer, such as unencrypted communication and default passwords.
Audit Metadata