ideogram-core-workflow-b
Pass
Audited by Gen Agent Trust Hub on Mar 18, 2026
Risk Level: SAFENO_CODEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill does not contain any malicious instructions, obfuscated content, or unauthorized network operations. References to Ideogram documentation are to legitimate, well-known service domains.
- [NO_CODE]: The skill implementation sections contain only comments and placeholders (e.g., '// Step 1 implementation'), meaning no actual logic or scripts are executed by this file.
- [PROMPT_INJECTION]: The skill demonstrates a potential surface for indirect prompt injection because it is designed to process external data (Ideogram API results) and possesses capabilities for file modification and command execution (Bash).
- Ingestion points: Results from Ideogram API.
- Boundary markers: None explicitly defined in the provided markdown.
- Capability inventory: Permissions for Read, Write, Edit, and Bash (npm commands).
- Sanitization: No evidence of sanitization or validation for API responses prior to processing.
Audit Metadata