incorporation
Pass
Audited by Gen Agent Trust Hub on Feb 22, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No instructions designed to override the agent's core safety protocols or extract system prompts were found.
- [Data Exposure & Exfiltration] (SAFE): The skill interacts with local configuration and reference files provided within its directory structure. There are no network calls to external domains or attempts to access sensitive system files like SSH keys or credentials.
- [Remote Code Execution] (SAFE): There are no commands for downloading external scripts or installing third-party packages.
- [Indirect Prompt Injection] (LOW): While the skill ingests user input about business finances, it does not fetch data from untrusted external sources like web URLs or APIs. It maps user queries against a static set of internal markdown documents.
Audit Metadata