idempiere-zk
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [General] (SAFE): The skill is composed entirely of instructional documentation (Markdown) and configuration metadata (YAML). No executable scripts or automation routines are present.
- [Prompt Injection] (SAFE): The instructions focus on technical implementation details for iDempiere development and do not contain patterns intended to bypass AI safety filters or override system constraints.
- [Data Exposure] (SAFE): No hardcoded credentials, sensitive file paths, or exfiltration patterns were detected. References to project structures (e.g.,
src/web/theme) are standard for software development. - [Remote Code Execution] (SAFE): There are no commands for downloading external packages or executing remote scripts (no
curl,wget,npm, orpipusage). - [Indirect Prompt Injection] (LOW): While the skill processes user-provided inputs regarding UI design, it acts as a passive knowledge base for the agent rather than an active tool with high-privilege capabilities. There is no automated execution of the generated designs.
Audit Metadata