threejs
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- General Analysis (SAFE): The skill provides structured information for 3D development with no malicious scripts or command execution.
- Prompt Injection (SAFE): No override markers or jailbreak-style instructions were found.
- Data Exfiltration (SAFE): There are no patterns for accessing sensitive files (~/.ssh, etc.) or sending data to untrusted domains.
- Remote Code Execution (SAFE): The skill does not include any remote script execution or package installation commands.
- Indirect Prompt Injection (SAFE): While the skill mentions loading external assets, it does not provide an automated mechanism that processes untrusted data within the agent's context.
Audit Metadata