cw-story-critique
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [SAFE] (SAFE): No malicious patterns detected across the analyzed files.
- [Indirect Prompt Injection] (LOW): The skill is designed to ingest and process untrusted user content (story drafts). While this presents an attack surface where a user could embed instructions within a story to override the agent's behavior, the skill's capabilities are limited to providing text-based feedback and performing web searches for narrative techniques. It lacks write access to the filesystem, command execution, or other high-privilege capabilities that would make such an injection dangerous.
- [Data Exposure] (SAFE): The skill does not access sensitive local file paths or include hardcoded secrets.
- [Remote Code Execution] (SAFE): There are no patterns involving the download or execution of remote scripts or the installation of external packages.
Audit Metadata