ip-evaluator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): No patterns of instruction override, bypass, or system prompt extraction were detected. The instructions are focused on the intended analysis task.
- Data Exposure & Exfiltration (SAFE): The skill does not access sensitive local files or perform any network operations. It specifies
allowed-tools: [], indicating no tool-based data access. - Unverifiable Dependencies & Remote Code Execution (SAFE): No Python or Node.js packages are defined. There are no patterns involving
curl,wget, or piped shell execution. - Persistence & Privilege Escalation (SAFE): The skill does not attempt to modify system startup scripts, shell profiles, or use administrative commands like
sudo. - Indirect Prompt Injection (LOW): The skill is designed to process untrusted external data (novel summaries, reader stats). While this constitutes a data ingestion surface, the lack of any tool capabilities (filesystem, network, or command execution) prevents this from being an exploitable vector. There are no boundary markers, but the risk remains negligible given the zero-tool profile.
Audit Metadata