rust-engineer
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- Prompt Injection (SAFE): No override markers, role-play jailbreaks, or instructions to bypass safety protocols were detected. The instructions strictly define a technical persona.
- Data Exposure & Exfiltration (SAFE): No sensitive file paths (~/.ssh, .env) or network operations (curl, wget) are present. The skill does not access or transmit user data.
- Obfuscation (SAFE): Content is clear and readable. No Base64, zero-width characters, or homoglyphs were found.
- Remote Code Execution (SAFE): The skill does not download or execute external scripts. It references local documentation files (e.g.,
references/ownership.md) which is standard for modular skills. - Indirect Prompt Injection (LOW): As a code-generation assistant, the skill processes user requirements. However, it lacks defined capabilities for autonomous file writing or network access that would create an exfiltration or execution vector.
- Privilege Escalation & Persistence (SAFE): No commands for modifying system permissions or establishing persistence (crontab, shell profiles) are included.
Audit Metadata