Skills
skills/jeremylongshore/claude-code-plugins-plus-skills/invoice-generator/Gen Agent Trust Hub

invoice-generator

Pass

Audited by Gen Agent Trust Hub on Feb 18, 2026

Risk Level: SAFENO_CODE
Full Analysis
  • [General Analysis] (SAFE): The skill definition is purely informational and lacks any embedded scripts or executable logic. No patterns of prompt injection, obfuscation, or persistence were detected.
  • [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, sensitive file paths, or network exfiltration patterns were found.
  • [Unverifiable Dependencies & Remote Code Execution] (SAFE): The skill does not reference any external packages or remote scripts. It is a 'no-code' skill definition.
  • [Indirect Prompt Injection] (SAFE): While the skill describes an attack surface by ingesting user triggers and possessing 'Bash' and 'Write' capabilities, it provides no concrete implementation that could be exploited. In its current state, it functions as a prompt-based assistant with no predefined malicious actions.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 18, 2026, 03:21 PM