workflow-automation
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWNO_CODE
Full Analysis
- [NO_CODE] (SAFE): The provided file is strictly markdown documentation outlining best practices for workflow automation. No executable scripts (.py, .js, .sh), configuration files, or command-line instructions were found.
- [PROMPT_INJECTION] (SAFE): The content focuses on architectural patterns and does not contain phrases designed to override agent behavior, bypass filters, or extract system prompts.
- [EXTERNAL_DOWNLOADS] (SAFE): No references to remote package registries (npm, PyPI) or direct download links (curl, wget) were detected.
- [DATA_EXFILTRATION] (SAFE): There are no patterns suggesting access to local sensitive files (~/.ssh, .env) or unauthorized network communication.
- [SECURITY_METADATA] (INFO): The 'Sharp Edges' table uses terms like 'critical' and 'high', but these refer to architectural risks in workflow design (e.g., missing idempotency keys) rather than vulnerabilities within the skill itself.
Audit Metadata