xcode-26
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): The skill's instructions in SKILL.md are standard for a knowledge-base agent. No override, bypass, or role-play injection patterns were found.
- Data Exposure & Exfiltration (SAFE): No access to sensitive system files or credentials. Code examples (e.g., for StoreKit) use clearly marked placeholders for keys and identifiers.
- Obfuscation (SAFE): All analyzed content is in clear text. No Base64, zero-width characters, homoglyphs, or other obfuscation techniques were identified.
- Unverifiable Dependencies & Remote Code Execution (SAFE): The skill does not install third-party packages or execute remote scripts. It provides documentation for official Apple developer frameworks.
- Privilege Escalation (SAFE): No commands involving sudo, chmod, or administrative access were detected.
- Persistence Mechanisms (SAFE): The skill does not attempt to modify startup scripts, cron jobs, or registry keys to maintain presence.
- Metadata Poisoning (SAFE): The metadata (name, description) accurately matches the content of the reference documentation.
- Indirect Prompt Injection (SAFE): The skill functions as a static lookup resource and lacks high-risk capabilities (network requests or file writes) required for this attack vector.
- Time-Delayed / Conditional Attacks (SAFE): No logic was found that gates functionality based on date, time, or environment conditions.
- Dynamic Execution (SAFE): The skill does not use eval(), exec(), or any dynamic loading/compilation techniques.
Audit Metadata