skill-plan
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): Instructional language is strictly for task organization and does not attempt to override safety protocols.
- Data Exposure & Exfiltration (SAFE): No unauthorized file access or exfiltration patterns were found. Scripts handle local packaging only.
- Unverifiable Dependencies & Remote Code Execution (SAFE): No external downloads or dynamic execution of remote code. Python scripts use standard libraries.
- Indirect Prompt Injection (SAFE): Ingestion of user examples is for planning purposes only. Evidence: 1. Ingestion points: SKILL.md workflow step 1. 2. Boundary markers: Absent. 3. Capability inventory: Packaging scripts. 4. Sanitization: Basic regex validation in quick_validate.py.
Audit Metadata