prompt-engineering
Pass
Audited by Gen Agent Trust Hub on Mar 24, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill contains numerous examples of
infsh app runcommands. These are standard CLI operations for the 'inferencesh' platform and are used here for educational purposes to demonstrate prompt engineering techniques. These commands target well-known models (Claude, GPT-4, FLUX, Veo) and include only benign, instructional data inputs. - [EXTERNAL_DOWNLOADS]: The skill references other skills from the 'inference-sh' organization using
npx skills add. These are internal references to the vendor's own ecosystem and do not constitute a security risk. - [PROMPT_INJECTION]: While the skill discusses prompt engineering (including system prompts and role-playing), it does so from a pedagogical perspective. It provides examples of how to use these features legitimately rather than attempting to bypass safety filters or override agent behavior maliciously. The examples provided (e.g., 'You are a senior software engineer') are standard patterns for improving model performance.
- [DATA_EXFILTRATION]: No patterns of sensitive data access or exfiltration were detected. All network operations are directed towards the vendor's own infrastructure (
inference.sh) or well-known model providers via their API gateway.
Audit Metadata