compliance-report-builder
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): The skill follows standard instructional patterns for compliance reporting and does not attempt to override system instructions or bypass safety guardrails.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, sensitive file paths, or network exfiltration patterns were detected. The templates use placeholder classification (e.g., 'Confidential') without exposing actual data.
- [Obfuscation] (SAFE): The documentation and code blocks are fully transparent and contain no hidden characters, Base64 encoding, or homoglyphs.
- [Remote Code Execution] (SAFE): There are no patterns involving external script downloads (curl/wget) or package installations (pip/npm).
- [Command Execution] (SAFE): The skill includes Python and JavaScript code blocks for calculating sample sizes and risk scores. These snippets are purely mathematical, do not import sensitive libraries, and do not interact with the operating system shell.
Audit Metadata