trigger-habitat
Pass
Audited by Gen Agent Trust Hub on May 4, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: No prompt injection or behavior override patterns were detected. The instructions follow standard formatting for agent skills and do not attempt to bypass safety guidelines.
- [DATA_EXFILTRATION]: No sensitive data access, credential exposure, or network exfiltration patterns were found. The skill does not request access to the file system or environment variables.
- [EXTERNAL_DOWNLOADS]: The skill does not perform any external downloads or fetch remote resources. References to books and related skills are for informational purposes only.
- [REMOTE_CODE_EXECUTION]: There is no code execution capability within the skill. It consists entirely of markdown instructions and JSON test data.
- [COMMAND_EXECUTION]: No shell commands or system-level operations are present in the provided files.
- [OBFUSCATION]: No obfuscated strings, hidden characters, or encoded payloads were detected in the text or metadata.
- [INDIRECT_PROMPT_INJECTION]: While the skill is designed to process user-provided marketing scenarios, it lacks the technical capabilities (e.g., tool access, file writing, network requests) to be exploited via indirect injection.
- [DYNAMIC_CONTEXT_INJECTION]: No use of the dynamic shell execution syntax ('!') was found in the SKILL.md file.
Audit Metadata