prompt-engineering-patterns
Pass
Audited by Gen Agent Trust Hub on Apr 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a collection of educational resources and development tools for prompt engineering. It does not contain any executable code that performs unauthorized actions or accesses sensitive data.
- [DATA_EXPOSURE]: No hardcoded credentials, API keys, or access to sensitive local file paths (such as .ssh or .aws) were found in the instructions or scripts.
- [EXTERNAL_DOWNLOADS]: The skill references standard, well-known data science and machine learning libraries (e.g., numpy, scikit-learn, sentence-transformers) which are commonly used in the industry. It does not attempt to download or execute scripts from untrusted remote servers.
- [INDIRECT_PROMPT_INJECTION]: The skill documents patterns for interpolating external data into prompts (e.g., in
SKILL.mdandreferences/prompt-templates.md). This is the intended primary purpose of the skill. While this creates a standard attack surface for indirect prompt injection, the skill also includes defensive patterns such as variable validation in its advanced template guides.
Audit Metadata