contract-review
Pass
Audited by Gen Agent Trust Hub on Apr 11, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill performs all operations locally. No network requests, credential harvesting, or data exfiltration patterns were found in the provided scripts or documentation. Evidence:
scripts/contract_analyzer.py,scripts/redline_generator.py. - [COMMAND_EXECUTION]: The skill instructs the agent to execute local Python scripts to process user contract data. These scripts are self-contained and do not use untrusted input to execute dynamic code or shell commands. Evidence:
SKILL.md,scripts/contract_analyzer.py. - [PROMPT_INJECTION]: The skill defines a surface for indirect prompt injection as it processes external contract files. 1. Ingestion points:
contract_analyzer.pyreads user-supplied text files. 2. Boundary markers: Absent. 3. Capability inventory: Local script execution and file reading. 4. Sanitization: Absent. Although the scripts are deterministic and not susceptible to instruction override, the risk exists if an agent ingests the raw contract text into an LLM context. Evidence:scripts/contract_analyzer.py.
Audit Metadata