gdpr-ccpa-privacy-auditor
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [NO_CODE] (SAFE): The skill consists exclusively of documentation and metadata. No scripts, binaries, or active code components were detected.
- [INDIRECT_PROMPT_INJECTION] (SAFE): The design includes inputs for 'website_url' and 'policy_text', which are points for untrusted data ingestion. (1) Ingestion points: 'website_url' and 'policy_text'. (2) Boundary markers: Absent. (3) Capability inventory: NLP extraction and web crawling. (4) Sanitization: No sanitization logic provided in this specification.
- [DATA_EXPOSURE] (SAFE): The skill design accepts a 'source_code_path', indicating a plan to read local files. This is a potential risk vector for local file exposure, though no code is provided to execute such actions.
Audit Metadata