bet-sizing
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No malicious override or bypass patterns were detected. Instructional terms like 'CRITICAL' and 'NEVER' are used contextually for product management logic rather than attempting to alter the agent's core safety instructions.
- [Data Exposure & Exfiltration] (SAFE): No access to sensitive file paths (~/.ssh, .env, etc.) or network commands (curl, wget) was found. The external link to GitHub is for documentation purposes only.
- [Remote Code Execution] (SAFE): No external dependencies, package installations (pip, npm), or script executions are present in the skill.
- [Indirect Prompt Injection] (LOW): The skill processes user-supplied product pitches and bets, which are untrusted ingestion points. However, because the skill has no functional capabilities—such as file writing, shell execution, or network requests—the risk of an injection causing harm is non-existent. Evidence: 1. Ingestion: Product pitches and bets provided by the user. 2. Boundaries: No explicit delimiters or boundary markers are defined. 3. Capabilities: No executable tools or system access capabilities. 4. Sanitization: No input sanitization is performed as the output is purely analytical text.
Audit Metadata