sisyphus
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): The skill defines a specific persona and task-handling workflow. It does not contain instructions to bypass safety filters, ignore system prompts, or extract internal instructions. The 'Challenge User' directive is a logic-based instruction for task optimization, not a safety bypass.
- [Data Exposure & Exfiltration] (SAFE): There are no hardcoded credentials, sensitive file path references, or network communication tools (like curl or wget) within the instructions.
- [Remote Code Execution] (SAFE): The skill does not download external scripts or execute remote code. It delegates tasks to other internal agents (@explore, @librarian), which is a standard orchestration pattern.
- [Command Execution] (SAFE): No shell commands, subprocess spawning, or system-level modifications are present in the skill definition.
- [Obfuscation] (SAFE): The content is clear-text Markdown and YAML. No Base64, zero-width characters, or homoglyph-based obfuscation techniques were detected.
Audit Metadata