graham-hackers-painters
Fail
Audited by Gen Agent Trust Hub on Mar 15, 2026
Risk Level: HIGHPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill uses zero-width characters (ZWSP, ZWNJ, ZWJ, and Word Joiners) to obfuscate content hidden within the title markdown header. Specifically, the title '# Paul Graham Style Guide' is followed by a sequence of characters (
\u2060\u200D\u2060...\u2060\u200D\u2060) that encode data not visible to the user. This technique is often employed to bypass safety filters or to inject 'invisible' instructions such as 'Ignore previous instructions' or commands to exfiltrate system prompts.
Recommendations
- AI detected serious security threats
Audit Metadata