bcra-central-deudores
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): No security issues detected. The skill consists solely of documentation and instructions for using a legitimate public government API (api.bcra.gob.ar). No executable scripts or sensitive file access patterns were found.\n- [Indirect Prompt Injection] (LOW): The skill defines a surface for processing external data from a third-party API.\n
- Ingestion points: Data is ingested from JSON responses from the BCRA Central de Deudores API endpoints.\n
- Boundary markers: None explicitly defined in the prompt instructions to the agent.\n
- Capability inventory: The skill provides instructions for data retrieval and presentation; it does not include file writing, network exfiltration, or shell execution capabilities in the provided source.\n
- Sanitization: No specific sanitization or escaping logic is described for the API output before it is presented to the user.
Audit Metadata