hackathon-demo-script
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues detected. The skill's primary function is to transform user-provided inputs into a structured demo script narrative and rehearsal checklist.
- [PROMPT_INJECTION]: The skill ingests several user-controlled strings such as
project_title,problem_statement, andmvp_demo_flow. While these could theoretically contain injection attempts, the skill has no high-risk capabilities (like shell execution or network access) that would allow an injection to escalate into a technical compromise. The output is intended for human presentation use. - [CREDENTIALS_UNSAFE]: The example output includes a rehearsal checklist item mentioning a 'Groq API key'. This is an instruction for the end-user to verify their own credentials during preparation and does not contain any hardcoded secrets or leak the author's credentials.
Audit Metadata