professional-communication
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No instructions designed to override agent behavior, bypass safety filters, or extract system prompts were detected. All instructional text is benign.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, sensitive file paths (e.g., SSH keys), or network-capable commands (curl, wget) are present.
- [Obfuscation] (SAFE): All content is plain text markdown. No Base64 encoding, zero-width characters, or homoglyphs were found.
- [Unverifiable Dependencies & Remote Code Execution] (SAFE): The skill does not include package manifests (requirements.txt, package.json) or any commands to download and execute external scripts.
- [Privilege Escalation & Persistence] (SAFE): No commands involving sudo, chmod, or modification of system startup files (like .bashrc) are included.
- [Indirect Prompt Injection] (SAFE): The skill consists of static reference material. It does not ingest untrusted external data from the web or other sources, thus lacking the necessary attack surface for indirect injection.
- [Dynamic Execution] (SAFE): No runtime code generation, compilation, or unsafe deserialization (e.g., pickle) is performed.
Audit Metadata