python-backend-fastapi
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): The instructions are strictly workflow-oriented for software development and do not contain any patterns attempting to bypass safety filters or override system instructions.
- Data Exposure & Exfiltration (SAFE): No hardcoded credentials or sensitive file paths were found. The skill explicitly instructs the agent to avoid logging secrets or PII and recommends standard library logging.
- Obfuscation (SAFE): All content is written in clear, human-readable Markdown and YAML without any hidden or encoded characters.
- Unverifiable Dependencies & Remote Code Execution (SAFE): The skill references standard, well-known libraries from the Python ecosystem. No remote script execution or downloads from untrusted sources are present.
- Privilege Escalation (SAFE): No commands related to privilege escalation or unnecessary permission changes were detected.
- Persistence Mechanisms (SAFE): No instructions attempt to establish persistent access to a system.
- Indirect Prompt Injection (SAFE): While the skill describes an ETL workflow, it provides architectural guidance for building applications rather than a mechanism for the agent to process untrusted data directly into its execution context.
Audit Metadata