clerk-testing
Pass
Audited by Gen Agent Trust Hub on Feb 15, 2026
Risk Level: LOW
Full Analysis
- SAFE (SAFE): No security issues or malicious patterns were identified. The skill is limited to providing guidance for developer testing workflows.
- Indirect Prompt Injection (INFO): The skill is designed to fetch and process external content from clerk.com. Ingestion points: Documentation URLs specified in the SKILL.md decision tree. Boundary markers: Absent. Capability inventory: Restricted to the WebFetch tool for information retrieval. No subprocess calls, file-write operations, or network exfiltration capabilities are present. Sanitization: None specified. The risk is negligible because the skill provides information to the user without executing side-effect-heavy actions.
Audit Metadata