docfactory-market
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): Analysis of SKILL.md found no override markers or bypass attempts. The role-play instructions are scoped to the market research task.
- Data Exposure & Exfiltration (SAFE): The skill reads project-specific markdown files. No sensitive file paths like SSH keys or AWS credentials are referenced.
- Obfuscation (SAFE): All files were scanned for Base64, zero-width characters, and homoglyphs; no obfuscation was detected.
- Unverifiable Dependencies & Remote Code Execution (SAFE): No external dependencies are installed. The validate_docfactory_market.py script is transparent and limited to regex checks on local files.
- Privilege Escalation (SAFE): No privilege-escalating commands (e.g., sudo, chmod) are present.
- Persistence Mechanisms (SAFE): No attempts to modify system startup files or cron jobs were found.
- Metadata Poisoning (SAFE): Metadata fields are descriptive and contain no hidden instructions.
- Indirect Prompt Injection (SAFE): The skill has a data ingestion surface (web browsing), but the risk is mitigated by strict template requirements and the absence of high-risk capabilities like writing to system files.
- Time-Delayed / Conditional Attacks (SAFE): Logic is linear and lacks conditional triggers based on time or environment.
- Dynamic Execution (SAFE): No use of eval, exec, or runtime code generation detected.
Audit Metadata