checking-hipaa-compliance
Pass
Audited by Gen Agent Trust Hub on Apr 4, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill ingests untrusted data from external sources, making it vulnerable to indirect prompt injection.
- Ingestion points: Scans project codebase, infrastructure configurations, and documentation files.
- Boundary markers: No explicit delimiters or instructions are used to separate untrusted content from system instructions.
- Capability inventory: The skill has access to file system tools and scoped shell execution tools.
- Sanitization: No sanitization of the input files is described.
- [COMMAND_EXECUTION]: The skill executes Python scripts and utilizes scoped Bash tools to perform compliance scanning and reporting.
Audit Metadata