tipkit
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE]: No malicious patterns, prompt injections, or obfuscated code were detected in the skill files.
- [NO_CODE]: The skill contains only documentation and static code examples for reference; it does not provide any scripts or tools that execute on the host system.
- [DATA_EXPOSURE_AND_EXFILTRATION]: No hardcoded credentials or sensitive file paths were identified. Network references (e.g., CloudKit) are standard configuration placeholders for the framework being documented.
- [INDIRECT_PROMPT_INJECTION]: While the skill is designed to process user code for TipKit implementation, it lacks any powerful capabilities (like file writes or shell execution) that could be exploited via malicious input.
Audit Metadata