remote-work-negotiation
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWNO_CODE
Full Analysis
- Prompt Injection (SAFE): No instructions found that attempt to override system behavior or bypass safety filters.- Data Exposure & Exfiltration (SAFE): No sensitive file access, hardcoded credentials, or network operations detected.- Obfuscation (SAFE): No encoded content, zero-width characters, or homoglyphs identified.- Unverifiable Dependencies & Remote Code Execution (SAFE): No package installations or remote script execution patterns found.- Privilege Escalation (SAFE): No commands found that attempt to acquire elevated permissions.- Persistence Mechanisms (SAFE): No attempts to modify startup scripts or system configuration.- Metadata Poisoning (SAFE): Metadata correctly describes the skill's purpose without malicious instructions.- Indirect Prompt Injection (SAFE): Documented Evidence Chain: 1. Ingestion points: Processes user queries in 'SKILL.md'. 2. Boundary markers: Absent. 3. Capability inventory: No subprocess calls, network ops, or file writes. 4. Sanitization: N/A. Capability Tier is INFO; the skill only provides text advice.- Time-Delayed / Conditional Attacks (SAFE): No logic identified that triggers based on time or environmental conditions.- Dynamic Execution (SAFE): No runtime code generation or unsafe deserialization logic present.
Audit Metadata