RFP Analyzer
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- Prompt Injection (SAFE): No instructions to override system prompts or bypass safety filters were found in SKILL.md.
- Data Exposure (SAFE): No hardcoded credentials or access to sensitive file paths like .ssh or .aws were detected.
- External Downloads (SAFE): No remote scripts, package installations, or unauthorized downloads are present in the documentation or instructions.
- Indirect Prompt Injection (SAFE): The skill processes user-provided RFP documents for analysis (Phases 1-4), but lacks exploitable capabilities such as file-writing, network communication, or shell access, neutralizing the risk of data exfiltration or system compromise.
- Dynamic Execution (SAFE): No use of eval(), exec(), or runtime code generation was identified across any of the analyzed files.
Audit Metadata