analyze
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, obfuscation, or unauthorized data access were found in the skill files. The skill is entirely composed of markdown instructions and a reasoning framework.
- [PROMPT_INJECTION]: The skill effectively mitigates injection risks by instructing the agent to evaluate all inputs as evidence rather than directives. (Mandatory Evidence Chain for Category 8: 1. Ingestion points: user statements, attached materials such as notes/reports, and tool outputs. 2. Boundary markers: No structural markers, but Operating Principle 2 provides a behavioral boundary. 3. Capability inventory: Uses tools like Read, Grep, Glob, and WebSearch; can load other skills like /explore or /research. 4. Sanitization: Explicit instructions to triage materials for relevance and accuracy and to test user hypotheses.)
- [DATA_EXFILTRATION]: There is no evidence of credential harvesting or unauthorized data transmission. The skill uses standard internal tools for legitimate context gathering.
- [REMOTE_CODE_EXECUTION]: No remote scripts, package installations, or dynamic code execution patterns are present.
Audit Metadata