cloud-infrastructure
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [Prompt Injection] (SAFE): No patterns of instruction override, jailbreak attempts, or system prompt extraction were detected in the text or metadata.
- [Data Exposure & Exfiltration] (SAFE): The content does not reference sensitive local file paths, hardcoded secrets, or network commands. It correctly advises against committing state files and using long-term credentials.
- [Obfuscation] (SAFE): The markdown is clear and lacks any encoded strings, zero-width characters, or homoglyphs.
- [Unverifiable Dependencies & RCE] (SAFE): There are no package installation commands (npm/pip) or remote script execution patterns identified.
- [Privilege Escalation] (SAFE): No commands involving sudo, chmod, or administrative privilege acquisition were found.
- [Persistence Mechanisms] (SAFE): No attempts to modify shell profiles or system startup configurations were detected.
- [Indirect Prompt Injection] (SAFE): The skill acts as a static knowledge base. It does not ingest or process untrusted external data that could lead to indirect injection attacks.
- [Dynamic Execution] (SAFE): The skill contains no code generation or runtime execution logic.
Audit Metadata