social-caption-writer
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [Prompt Injection] (SAFE): No attempts to override system prompts, bypass safety filters, or extract system instructions were detected.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, sensitive file paths, or network exfiltration patterns (curl, wget, fetch) were found.
- [Remote Code Execution] (SAFE): The skill does not download or execute external scripts, and no package manager activity (npm, pip) is present.
- [Command Execution] (SAFE): No shell commands, privilege escalation attempts (sudo), or persistence mechanisms (cron, bashrc) were identified.
- [Indirect Prompt Injection] (SAFE): While the skill is designed to process user-provided content for captions (Ingestion Point: Workflow 1 Discovery), it lacks any functional capabilities such as network access or file writing (Capability Inventory: None), making exploitation impossible.
- [Dynamic Execution] (SAFE): No runtime code generation, compilation, or unsafe deserialization patterns were found.
- [Obfuscation] (SAFE): No encoded content, zero-width characters, or homoglyphs were detected.
Audit Metadata