Cost Optimizer
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWNO_CODE
Full Analysis
- [NO_CODE] (INFO): The skill consists exclusively of markdown documentation and YAML metadata. There are no executable scripts (.py, .js, .sh), environment files, or package manifests included.
- [SAFE] (SAFE): Analysis of the instructions and metadata revealed no evidence of prompt injection, obfuscation, hardcoded credentials, or unauthorized persistence mechanisms. The workflows described are high-level and informational.
- [Indirect Prompt Injection] (LOW): While Workflow 1 describes 'gathering data' from external expense sources (an ingestion surface), the skill does not define any capabilities to execute commands, write files, or perform network operations, mitigating the risk of data-driven attacks.
Audit Metadata