create-web-form
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No instructions attempting to override agent behavior or bypass safety filters were found. The content is strictly educational and technical.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, sensitive file paths, or unauthorized network operations were detected. Examples use generic placeholders like 'user' or 'John Doe'.
- [Obfuscation] (SAFE): No base64, zero-width characters, or other encoding techniques were used to hide malicious intent.
- [Unverifiable Dependencies & Remote Code Execution] (SAFE): The skill mentions standard Python packages (Flask, Gunicorn) and provides installation commands for learning purposes. All referenced external sources (developer.mozilla.org, realpython.com) are highly trusted.
- [Indirect Prompt Injection] (SAFE): While the skill acts as a surface for the agent to ingest data, the content is static documentation from trusted sources without executable logic or attacker-controlled inputs.
- [Privilege Escalation] (SAFE): No commands for acquiring administrative permissions or modifying system configurations were found.
Audit Metadata