jquery-4
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No instructions attempting to bypass safety filters or override agent behavior were found.
- [Data Exposure] (SAFE): No code for accessing sensitive local files (e.g., credentials, SSH keys) or exfiltrating data was identified.
- [External Downloads] (SAFE): References to external scripts in the documentation point to official jQuery CDN sources (code.jquery.com) and are intended as implementation examples for developers.
- [Metadata Poisoning] (SAFE): The plugin metadata contains a truncated code snippet in the description field, which is a benign documentation error.
- [Indirect Prompt Injection] (SAFE): The skill processes user-provided JavaScript code for migration analysis. While no explicit boundary markers are used, the skill lacks dangerous capabilities such as arbitrary command execution, file system access, or network requests that would make such input exploitable.
Audit Metadata