architecture
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): The skill contains no instructions designed to bypass safety filters, extract system prompts, or override agent behavior. The language is purely instructional and focused on architectural frameworks.
- Data Exposure & Exfiltration (SAFE): No sensitive file paths, credentials, or network operations are present. The toolset is restricted to local file discovery and reading (Read, Glob, Grep), with no way to send data externally.
- Obfuscation (SAFE): No Base64, zero-width characters, or other encoding techniques were found. All content is transparent and human-readable.
- Remote Code Execution (SAFE): The skill does not download external scripts or execute code. It consists entirely of Markdown guidance and templates.
- Indirect Prompt Injection (LOW): While the skill is designed to read user project files (an ingestion surface), it has no high-risk capabilities (like shell execution or network access) that could be exploited by malicious content within those files.
Audit Metadata