blog-writing
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): The instructions focus entirely on stylistic guidance and tone. There are no attempts to bypass safety filters, extract system prompts, or override agent constraints.
- Data Exposure & Exfiltration (SAFE): No sensitive file paths, hardcoded credentials, or network transmission commands are present.
- Obfuscation (SAFE): The content is clear markdown text with no hidden encoding, zero-width characters, or homoglyphs.
- Remote Code Execution & Dependencies (SAFE): The skill contains no scripts, package manifests, or commands to download/execute remote content.
- Persistence & Privilege Escalation (SAFE): No commands for system modification, task scheduling, or permission changes are included.
- Indirect Prompt Injection (LOW): While the skill is designed to process user-provided blog text, it lacks the technical capabilities (file writes, network calls, command execution) to be leveraged for a successful attack chain.
Audit Metadata