zero-trust-config-helper
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Indirect Prompt Injection (LOW): The skill presents an attack surface for indirect prompt injection as it is designed to process and validate external security configurations while having access to powerful tools like 'Bash'.
- Ingestion points: Processes user-provided security configurations and patterns for 'zero trust' setups.
- Boundary markers: None identified in the skill definition.
- Capability inventory: Access to 'Bash', 'Write', 'Edit', 'Read', and 'Grep' tools allows for significant system interaction.
- Sanitization: No specific sanitization or validation logic is defined to handle malicious instructions embedded in processed configurations.
- Command Execution (SAFE): Although 'Bash' is in the 'allowed-tools' list, the skill does not include any pre-defined scripts or automated command execution logic.
- No Code (SAFE): This skill consists entirely of instructional markdown and does not include any Python or Node.js scripts.
Audit Metadata