procedural-weather
Fail
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: CRITICAL
Full Analysis
- Prompt Injection (SAFE): The skill contains benign instructional content and prompt examples for generating weather effects. No bypass or override commands are present.\n- Data Exposure & Exfiltration (SAFE): No sensitive data access or network communication with external domains was detected.\n- Obfuscation (SAFE): No hidden or encoded content (e.g., Base64, zero-width characters) was found.\n- Unverifiable Dependencies & Remote Code Execution (SAFE): The skill utilizes standard Three.js libraries and local scripts. No remote execution (curl|bash) or suspicious dependencies are involved.\n- External Downloads (SAFE): No unauthorized external downloads are initiated. The scanner alert for 'this.ca' is not present in the content and is classified as a false positive.
Recommendations
- Contains 1 malicious URL(s) - DO NOT USE
Audit Metadata