product-lens
Pass
Audited by Gen Agent Trust Hub on Apr 6, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE]: No malicious patterns, prompt injections, or security vulnerabilities were identified. The skill acts as a cognitive framework for product management tasks.
- [NO_CODE]: This skill contains no scripts, binaries, or executable code. It is composed of markdown-based instructions and structured diagnostic templates.
- [DATA_EXFILTRATION]: The skill describes workflows for reading project metadata (e.g., README, package.json) and commit history to provide analysis. These are standard operations for an AI assistant in this context and do not target sensitive system credentials or private data.
- [EXTERNAL_DOWNLOADS]: Mode 3 describes an audit process involving cloning or installing a product. While this identifies a potential risk surface if the agent interacts with malicious third-party code, the skill itself does not provide specific URLs or automate the execution of remote scripts.
Audit Metadata