conversational-ai-flow
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No bypass markers, role-play injections, or instructions to ignore safety guidelines were found.
- [Data Exposure & Exfiltration] (SAFE): The skill does not access sensitive file paths, include hardcoded credentials, or perform network operations.
- [Obfuscation] (SAFE): No Base64, zero-width characters, homoglyphs, or other obfuscation techniques are present.
- [Unverifiable Dependencies & Remote Code Execution] (SAFE): No external package installations or remote script executions (e.g., curl|bash) were detected.
- [Privilege Escalation] (SAFE): No use of sudo, chmod, or other privilege-altering commands.
- [Persistence Mechanisms] (SAFE): No attempts to modify shell profiles, cron jobs, or system services were found.
- [Indirect Prompt Injection] (SAFE): While the skill logic is designed to process user input in 'update_context', there are no exploitable capabilities such as file system write or network requests to create a security risk.
Audit Metadata