visualizing-data
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- Prompt Injection (SAFE): No malicious override, bypass, or system prompt extraction patterns were found. Instructions are focused on chart selection and implementation.
- Data Exposure & Exfiltration (SAFE): No hardcoded credentials, sensitive file path access, or unauthorized network operations were detected in the scripts or code examples.
- Obfuscation (SAFE): All scripts, components, and documentation are written in clear, human-readable text without encoding or hidden characters.
- Unverifiable Dependencies & RCE (SAFE): The skill references standard, highly-trusted packages (Recharts, D3.js, Plotly, Matplotlib). No remote script execution or arbitrary command execution patterns are present.
- Indirect Prompt Injection (INFO): The skill includes utilities (
process_data.py,validate_accessibility.py) that ingest external CSV and HTML data. These scripts perform structured data transformations and casting (e.g.,float()conversion), which provides a layer of sanitization and limits the risk of instruction leakage into the agent context.
Audit Metadata