prefect-flow-builder
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [NO_CODE] (SAFE): The skill consists only of a markdown definition file without any associated scripts, binaries, or executable logic.
- [Indirect Prompt Injection] (LOW): The skill is configured to use high-privilege tools such as Bash and Write while processing external user requests related to data engineering. This creates a surface for indirect prompt injection where malicious data processed by the agent could attempt to influence tool execution, although no specific vulnerability or exploit is present in the skill definition.
Audit Metadata