unit-economics-optimizer
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFE
Full Analysis
- [DATA_EXPOSURE]: The skill reads and writes local files as part of its core functionality using user-defined paths. No unauthorized access to sensitive files or exfiltration of data was detected.
- [PROMPT_INJECTION]: The skill does not contain any instructions intended to override agent behavior or circumvent safety protocols.
- [INDIRECT_PROMPT_INJECTION]: The skill ingests data from external files, which serves as an attack surface for indirect injection. Evidence: (1) Ingestion point: src/index.ts reads the input file. (2) Boundary markers: Absent; results are returned as structured objects. (3) Capability inventory: Standard file system read and write operations via fs.readFileSync and safeWriteFile. (4) Sanitization: The skill relies on standard JSON parsing for structural validation.
Audit Metadata