algo-risk-var
Pass
Audited by Gen Agent Trust Hub on Apr 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill's primary function is to guide the calculation of financial risk metrics. The instructions in
SKILL.mdand the reference files provide legitimate mathematical methodologies for risk management. No patterns of credential theft, unauthorized network communication, or persistence were found. - [PROMPT_INJECTION]: The skill includes an attack surface for indirect prompt injection as it processes external portfolio data.
- Ingestion points: Untrusted data enters the context through historical return sequences and portfolio positions provided by the user or external tools.
- Boundary markers: No explicit delimiters or instructions to ignore embedded commands are used for the input data.
- Capability inventory: The skill does not perform any dangerous operations such as file system writes, network requests, or shell command execution. All calculations are mathematical.
- Sanitization: No input sanitization or verification of data integrity is mentioned, though this is typical for mathematical algorithms.
Audit Metadata