cost-verification-auditor
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious behavior or suspicious code patterns were found in the provided files. The skill is primarily instructional and provides reference data for auditing tasks.
- [COMMAND_EXECUTION]: The skill requires Bash, Read, and Write tools for its auditing functions, but no harmful or hidden shell commands are present in the documentation.
- [PROMPT_INJECTION]: No instructions aimed at bypassing AI safety guardrails, overriding system prompts, or leaking internal configurations were identified.
- [DATA_EXFILTRATION]: There are no hardcoded credentials, sensitive file paths, or unauthorized network communication patterns.
- [INDIRECT_PROMPT_INJECTION]: Ingestion points: The skill processes prompt and estimation data for auditing. Boundary markers: None. Capability inventory: Read, Write, and Bash. Sanitization: None. This represents a standard vulnerability surface for an auditor but does not contain exploitable logic.
Audit Metadata