career-changer-translator
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE]: The skill is composed entirely of Markdown and JSON configuration files for evaluation. There are no scripts (Python, JavaScript, shell) or binaries included in the package.
- [DATA_EXPOSURE]: No sensitive file paths, environment variables, or hardcoded credentials were detected. The skill operates solely on text provided by the user during the session.
- [REMOTE_CODE_EXECUTION]: There are no patterns involving remote script downloads (curl/wget), package installations, or dynamic execution of external content.
- [INDIRECT_PROMPT_INJECTION]: While the skill processes untrusted user input (career history), it lacks any high-privilege capabilities such as file system writing, network access, or shell execution that could be exploited via injection. The risk is limited to the quality of the text generation itself.
- [OBFUSCATION]: No hidden commands, multi-layer encoding, or malicious homoglyphs were found. The use of block characters for progress bars is a benign UI element.
- [PRIVILEGE_ESCALATION]: The skill does not request or attempt to use elevated permissions like sudo or administrative access.
Audit Metadata