ideogram-data-handling
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill implements security best practices for handling sensitive data, including PII detection via regular expressions and automated redaction of sensitive fields such as passwords and API keys.
- [SAFE]: Data management functions (export and deletion) are designed to comply with privacy regulations (GDPR/CCPA) and include audit logging for compliance purposes.
- [SAFE]: The data retention implementation uses automated cleanup logic to minimize data storage while excluding audit and compliance logs from deletion, aligning with regulatory requirements.
- [PROMPT_INJECTION]: The skill processes untrusted data via the PII detection and redaction functions. 1. Ingestion points: text and data parameters in the detectPII and redactPII functions (SKILL.md). 2. Boundary markers: None present. 3. Capability inventory: Read, Write, and Edit tools. 4. Sanitization: The skill provides redaction logic to mitigate data exposure.
Audit Metadata