decoding-search-behavior
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [Prompt Injection] (SAFE): The skill contains purely instructional language for SEO and content planning. There are no attempts to override agent behavior, bypass safety filters, or extract system prompts.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded secrets, API keys, or sensitive file paths were found. There are no network operations or external data transmission patterns.
- [Remote Code Execution] (SAFE): There are no scripts, binaries, or command-line instructions within the skill. No external packages are requested or installed.
- [Indirect Prompt Injection] (SAFE): While the skill requests user input through 'Discovery Questions', it possesses no technical capabilities (such as file writing, shell execution, or network requests) that could be leveraged for an attack. The attack surface is nonexistent.
- [Obfuscation] (SAFE): All text is plain Markdown. No Base64, zero-width characters, or homoglyphs were detected.
Audit Metadata