brand-guidelines
Pass
Audited by Gen Agent Trust Hub on Mar 31, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [SAFE]: The skill is primarily a set of informational guidelines for brand identity systems. A thorough review of SKILL.md identifies no attempts at prompt injection, credential harvesting, or unauthorized data access.
- [COMMAND_EXECUTION]: The skill includes three Python utility scripts (scripts/brand_audit_scorer.py, scripts/color_accessibility_checker.py, and scripts/messaging_consistency_checker.py) used for calculating consistency scores and accessibility compliance. These scripts utilize only standard Python libraries, lack any networking capabilities, and do not perform any dangerous operations such as arbitrary command execution or dynamic code evaluation.
- [SAFE]: The messaging consistency checker allows for the analysis of untrusted text data. However, since the script only outputs analysis metrics to the console and contains no sinks (like shell execution, file writing, or network transmission), the surface for indirect prompt injection is minimal and presents no security risk.
Audit Metadata