experiment-design-checklist
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWNO_CODE
Full Analysis
- [General Security] (SAFE): No malicious patterns, prompt injection attempts, or unauthorized data access mechanisms were found. The skill is purely informational.
- [NO_CODE] (INFO): This skill consists entirely of markdown documentation. It does not include any scripts (Python, JavaScript, Bash) or executable components, which significantly limits the potential attack surface.
- [Indirect Prompt Injection] (INFO): The skill is designed to process user-provided hypotheses into a structured experiment design template. While it handles untrusted input, it has no side-effect capabilities (such as file writing, network requests, or subprocess execution) that would make it vulnerable to exploitation.
Audit Metadata