cover-letter
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill executes a CLI tool named
braggerto load context from a knowledge base and retrieve job application data. It also uses thecatcommand to read local resume files. These operations are restricted to the skill's operational directory and are necessary for its functionality. - [DATA_EXPOSURE]: The skill reads from and writes to the
outputs/directory to manage job-specific documents. There is no evidence of unauthorized access to sensitive system files, environment variables, or hardcoded credentials. - [PROMPT_INJECTION]: The skill includes structured instructions using markers such as "CRITICAL" and "MANDATORY" to guide its internal workflow. These instructions are focused on ensuring the quality and consistency of the generated cover letter and do not attempt to bypass AI safety protocols or subvert the system prompt.
Audit Metadata