ccpa-cpra-privacy-expert
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security risks were identified. The skill consists of informational guides and utility scripts designed for local execution. The Python scripts analyze static JSON data provided by the user and do not require internet access, administrative privileges, or the execution of external code.
- [PROMPT_INJECTION]: The skill identifies an ingestion surface where organizational profiles and data inventories are processed as JSON files via the provided scripts. This surface is considered low risk due to the absence of exploitable capabilities. Ingestion points: scripts/ccpa_compliance_checker.py and scripts/ccpa_data_mapper.py via the --input argument. Boundary markers: JSON structure parsing. Capability inventory: No dangerous system calls, network operations, or dynamic code execution (eval/exec) detected across any script. Sanitization: Input content is validated against predefined CCPA/CPRA category maps.
Audit Metadata