Lean Canvas Builder
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWNO_CODE
Full Analysis
- [NO_CODE] (SAFE): The skill consists entirely of static Markdown text. There are no scripts, binaries, or command-line instructions provided or referenced.
- [DATA_EXPOSURE] (SAFE): No sensitive file paths, hardcoded credentials, or environment variable accesses were found.
- [REMOTE_CODE_EXECUTION] (SAFE): No external dependencies are declared, and no remote script execution patterns (e.g., curl | bash) are present.
- [PROMPT_INJECTION] (SAFE): The instructions are focused on business logic and do not contain any commands attempting to override agent behavior or bypass safety filters.
- [INDIRECT_PROMPT_INJECTION] (INFO): While the skill instructs the agent to process user-provided business requirements, the skill lacks any side-effect capabilities (file system access, network requests, or tool execution), rendering the risk of indirect injection negligible.
Audit Metadata