timezone-tools
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill executes local Python scripts (
get_time.py,convert_time.py,list_timezones.py). These scripts use command-line arguments as data inputs for internal Python functions (likeZoneInfo) rather than passing them to a shell, preventing command injection. - [EXTERNAL_DOWNLOADS] (SAFE): The skill depends on
tzlocal, a common and trusted Python library for detecting local timezones. No untrusted remote scripts or binaries are downloaded or executed. - [DATA_EXFILTRATION] (SAFE): Analysis of the Python scripts confirms there are no network operations (no
requests,urllib,socket, etc.) or access to sensitive file paths. - [PROMPT_INJECTION] (SAFE): The instructions in
SKILL.mdare purely functional and do not contain any bypass attempts, role-play injections, or instructions to ignore safety protocols. - [DYNAMIC_EXECUTION] (SAFE): No use of
eval(),exec(), or other dynamic code generation techniques was found. The logic relies on static Python code.
Audit Metadata