skill-standardization
Pass
Audited by Gen Agent Trust Hub on Mar 23, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were identified. The skill is dedicated to ensuring documentation compliance through local file parsing.
- [PROMPT_INJECTION]: The skill demonstrates an attack surface for indirect prompt injection as it processes untrusted local files (SKILL.md) for validation purposes.
- Ingestion points: The
scripts/validate_skill.shscript readsSKILL.mdfiles from user-specified directories. - Boundary markers: The skill does not implement specific boundary markers or 'ignore' instructions for the content of the files being audited.
- Capability inventory: The skill utilizes file system access tools (
Bash,Read,Write,Edit,Glob,Grep) to perform validation. The bash script uses standard utilities likegrep,sed, andawkfor text extraction. - Sanitization: The script extracts specific metadata fields for validation and does not execute the ingested content as code or interpolate it into high-privilege prompts.
Audit Metadata