elon-musk
Pass
Audited by Gen Agent Trust Hub on Mar 28, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill uses established platform capabilities for web searching (via Firecrawl, SearXNG, WebSearch) and file management (writing results to a local .hypercore directory). No evidence of credential theft, data exfiltration, or malicious command execution was found.
- [INDIRECT_PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface as it ingests data from external sources (web research and GitHub repositories) and processes it using autonomous agents. However, the risk is minimized as the skill focuses on analytical tasks and does not involve executing code from these external sources.
- Ingestion points: Web search results (Firecrawl, SearXNG, WebFetch) and GitHub repository data processed in Phase 1 and 3.
- Boundary markers: Not explicitly defined in the provided instruction files.
- Capability inventory: File writing (Write), agent orchestration (TeamCreate, Task), and web/tool searches (ToolSearch).
- Sanitization: Standard platform-level sanitization for tool outputs is expected; no custom sanitization logic is present in the skill instructions.
Audit Metadata