speak-data-handling
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides implementation patterns for security-sensitive tasks such as PII detection and GDPR compliance.
- Includes secure audio storage patterns using AES-GCM encryption for data at rest.
- Implements PII detection and redaction logic to filter sensitive information from lesson content before storage.
- Provides structured logic for managing user consent and handling data subject access requests (DSAR) and deletion.
- [PROMPT_INJECTION]: No patterns of prompt injection, instruction overrides, or safety bypass attempts were detected in the instructions or code examples.
- [DATA_EXFILTRATION]: No evidence of unauthorized data transmission or hardcoded credentials was found. The skill demonstrates secure handling of sensitive identifiers through hashing and encryption.
- [REMOTE_CODE_EXECUTION]: No remote code execution or dynamic code evaluation patterns were identified in the provided TypeScript implementations.
Audit Metadata