document-factory
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [DATA_EXPOSURE] (SAFE): The skill uses standard file tools (Read, Write, Grep, Glob) for managing templates and saving outputs. It does not attempt to access sensitive system files, environment variables, or hardcoded credentials.
- [REMOTE_CODE_EXECUTION] (SAFE): No evidence of external script downloads, package installations (npm/pip), or dynamic code evaluation (eval/exec) was found.
- [PROMPT_INJECTION] (SAFE): The instructions are focused on document architecture and do not contain attempts to bypass safety filters, extract system prompts, or override agent behavior.
- [OBFUSCATION] (SAFE): No encoded content (Base64), hidden Unicode characters, or homoglyphs were detected in the skill or templates.
- [INDIRECT_PROMPT_INJECTION] (SAFE): The skill populates documents based on user-provided context. While this is an ingestion surface for untrusted data, the risk is associated with the intended primary purpose of document generation and is handled as static markdown text.
Audit Metadata