taint-instrumentation-assistant
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE]: The skill functions as a knowledge base and code generation assistant. All provided code snippets are instructional templates for Python, Java, and JavaScript intended for the user to implement within their own applications.
- [NO_CODE]: The included Python script (
scripts/example.py) and asset files are placeholders containing no operational logic. The skill relies entirely on natural language instructions and markdown templates. - [COMMAND_EXECUTION]: While the skill contains references to potentially dangerous functions such as
os.system(),eval(), andexec(), these are explicitly documented as 'sinks' for the purpose of demonstrating how to detect security violations. They are not part of the skill's own execution flow.
Audit Metadata