architecture
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- NO_CODE (SAFE): The skill consists entirely of Markdown files providing structural guidance and decision-making frameworks. There are no scripts, binaries, or executable files included.
- EXTERNAL_DOWNLOADS (SAFE): No external dependencies, package managers (npm, pip), or remote URLs for script execution were detected.
- COMMAND_EXECUTION (SAFE): The skill does not use tools capable of executing shell commands or system-level modifications. It is restricted to 'Read', 'Glob', and 'Grep' for file analysis.
- PROMPT_INJECTION (LOW): While the skill reads external project files (Indirect Prompt Injection surface), it lacks any 'sink' or dangerous capability (like network access or code execution) to fulfill a malicious instruction found in those files.
- DATA_EXFILTRATION (SAFE): There are no network operations or hardcoded credentials. The analysis is performed locally within the agent's context.
Audit Metadata