api-reference-creator
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No instructions attempting to bypass safety filters or override system prompts were found.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, sensitive file paths, or unauthorized network operations were detected.
- [Unverifiable Dependencies & Remote Code Execution] (SAFE): The skill does not reference external packages or attempt to download/execute remote scripts.
- [Privilege Escalation] (SAFE): While the 'Bash' tool is included in 'allowed-tools', there are no instructions or scripts present that utilize it for unauthorized administrative tasks or privilege escalation.
- [Indirect Prompt Injection] (LOW): As a documentation tool, it inherently processes external text (API docs), creating a potential surface for indirect injection. However, no specific malicious patterns or unsafe interpolation of untrusted data were identified in the static definition.
Audit Metadata