product-manager-toolkit
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were identified in the skill. The provided Python scripts perform deterministic text analysis and calculations on local files provided by the user.
- [CREDENTIALS_UNSAFE]: There are no hardcoded credentials, API keys, or sensitive file paths (such as ~/.ssh or ~/.aws) accessed by the skill.
- [REMOTE_CODE_EXECUTION]: The skill does not perform any remote code execution. No external scripts are downloaded or executed, and there is no use of dangerous functions like eval() or exec() on untrusted input.
- [COMMAND_EXECUTION]: No shell command execution or subprocess spawning with untrusted data was found. The Python scripts use only standard library modules for local processing.
- [DATA_EXFILTRATION]: No network activity or data exfiltration logic was identified in any of the scripts or templates.
- [PROMPT_INJECTION]: No prompt injection or jailbreak patterns were detected in the instructions or documentation files.
Audit Metadata