localization-linguist
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- Prompt Injection (SAFE): The skill contains no instructions intended to subvert agent behavior or bypass safety constraints.
- Data Exposure & Exfiltration (SAFE): No sensitive file paths or credentials are referenced. There are no network operations.
- Remote Code Execution (SAFE): No external downloads or execution of remote code are present.
- Indirect Prompt Injection (INFO): Ingestion points: Reads translation keys from local locales/ JSON files. Boundary markers: None explicitly defined. Capability inventory: Limited to reading/writing translation files and modifying route configurations. Sanitization: Not specified, but the context is restricted to structured i18n data. Risk is negligible as there are no exfiltration or high-privilege execution vectors.
Audit Metadata