investment-memo
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns detected. The skill functions as a template-based document generator for financial analysis.
- [PROMPT_INJECTION]: No evidence of instructions designed to bypass safety filters, override system prompts, or exfiltrate internal agent state.
- [DATA_EXFILTRATION]: No network calls or unauthorized data transmission patterns identified. The skill processes user-inputted financial data locally within the document creation workflow.
- [CREDENTIALS_UNSAFE]: No hardcoded API keys, tokens, or credentials were found in the skill metadata or body.
- [REMOTE_CODE_EXECUTION]: The skill uses defined MCP tools (create_docx, fill_docx_template, docx_to_pdf) for document processing and does not download or execute arbitrary remote scripts.
- [COMMAND_EXECUTION]: No unauthorized system command execution or shell-level persistence mechanisms were detected.
Audit Metadata