checkpoint-guardian
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No attempts to bypass safety filters or override system instructions were detected. The skill's primary function is to reinforce agent constraints.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials or unauthorized data transmission logic. The skill mentions sensitive file paths (like AWS credentials) only as triggers for human confirmation, not for access.
- [Unverifiable Dependencies & Remote Code Execution] (SAFE): The skill consists entirely of markdown templates and configuration files; it does not install packages or execute remote code.
- [Indirect Prompt Injection] (SAFE): While the skill processes agent steps that may include external data, it acts as a defensive layer to mitigate risks associated with untrusted inputs by requiring manual approval for high-impact actions.
- [Persistence & Privilege Escalation] (SAFE): No mechanisms for maintaining access or acquiring unauthorized permissions were found.
Audit Metadata