convex-core
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): No instructions to bypass safety filters, ignore previous instructions, or extract system prompts were found. The instructions are standard constraints for code generation.
- Data Exposure & Exfiltration (SAFE): No hardcoded credentials, sensitive file paths, or unauthorized network operations were detected. The skill explicitly promotes security best practices, such as enforcing authentication and using internal functions for sensitive logic.
- Obfuscation (SAFE): The content consists of clear, human-readable markdown with no evidence of Base64 encoding, zero-width characters, or homoglyph-based evasion techniques.
- Remote Code Execution (SAFE): The skill does not contain any commands to download or execute external scripts, nor does it attempt to install untrusted third-party packages.
- Persistence & Privilege Escalation (SAFE): There are no patterns suggesting attempts to modify system configurations, shell profiles, or acquire elevated permissions.
Audit Metadata