skills/jeremylongshore/claude-code-plugins-plus-skills/security-benchmark-runner/Gen Agent Trust Hub
security-benchmark-runner
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): The file contains standard instructional triggers and does not attempt to override system prompts or bypass safety filters.
- Data Exposure & Exfiltration (SAFE): No hardcoded credentials, API keys, or sensitive file paths were detected.
- Remote Code Execution (SAFE): The skill does not reference external scripts, remote URLs for execution, or unverifiable dependencies.
- Privilege Escalation (SAFE): Although the skill requests access to high-privilege tools like
Bash, there are no instructions or scripts provided that utilize these tools for unauthorized privilege elevation. - Indirect Prompt Injection (SAFE): While the skill's intended purpose involves processing security data (logs/benchmarks), the provided content contains no logic susceptible to data-driven instruction injection.
Audit Metadata