exploration-tracking
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [PROMPT_INJECTION] (SAFE): No patterns of instruction override, jailbreaking, or safety filter bypass were detected. The skill is strictly focused on organizational techniques.
- [DATA_EXFILTRATION] (SAFE): No network operations (curl, wget, etc.) or access to sensitive file paths (SSH keys, credentials) are present.
- [REMOTE_CODE_EXECUTION] (SAFE): The skill contains no external dependencies, remote script downloads, or dynamic code execution patterns.
- [COMMAND_EXECUTION] (SAFE): No shell commands, subprocess calls, or privilege escalation patterns were identified. The allowed tools are limited to Read, Write, and AskUserQuestion.
- [INDIRECT_PROMPT_INJECTION] (INFO): The skill demonstrates a data ingestion surface and write capabilities. 1. Ingestion points: Workshop topics and branch descriptions provided by the operator. 2. Boundary markers: Absent. 3. Capability inventory: Read, Write, AskUserQuestion. 4. Sanitization: Absent. While instructions lack delimiters, the capability tier is restricted to session documentation, posing negligible risk.
Audit Metadata