algo-rank-bayesian
Pass
Audited by Gen Agent Trust Hub on Apr 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements standard Bayesian ranking algorithms commonly used for 'Top Rated' lists. The logic is transparent and mathematically sound.
- [COMMAND_EXECUTION]: The provided Python script
scripts/bayesian_avg.pyuses standard libraries (argparse,json) to perform calculations. It does not utilize dangerous functions such aseval(),exec(), orsubprocessto run shell commands. - [DATA_EXFILTRATION]: No network operations (
curl,wget,requests, etc.) or external data transmission patterns were found. The script only reads from a user-specified local JSON file. - [PROMPT_INJECTION]: The
SKILL.mdfile contains instructional content for the AI agent that defines its role and tasks clearly without any attempts to bypass safety filters or override system constraints. - [EXTERNAL_DOWNLOADS]: No external dependencies, remote scripts, or third-party package installations are required or performed by this skill.
- [CREDENTIALS_UNSAFE]: No hardcoded API keys, passwords, or sensitive file paths (e.g.,
.ssh,.aws/credentials) were detected in the scripts or documentation. - [INDIRECT_PROMPT_INJECTION]: The skill processes user-provided item data for ranking.
- Ingestion points:
scripts/bayesian_avg.pyingests data via a JSON file provided to the--inputargument. - Boundary markers: The script processes structured JSON data, which inherently separates metadata from execution logic.
- Capability inventory: The script is limited to mathematical operations and standard output of results.
- Sanitization: The script performs input validation on numerical values (e.g., checking for non-negative review counts) to ensure calculation integrity.
Audit Metadata