juicebox-data-handling
Pass
Audited by Gen Agent Trust Hub on Mar 24, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill provides standard architectural patterns and TypeScript examples for managing sensitive data in accordance with privacy regulations like GDPR.
- [PROMPT_INJECTION]: The skill defines logic for processing data subject rights (access, erasure, rectification) that ingests external identifiers like email addresses. This establishes a boundary where external data enters the system context (Category 8: Indirect Prompt Injection surface), though the implementation patterns shown use standard safe practices such as database parameterization and do not present a high risk.
Audit Metadata