first-principles
Pass
Audited by Gen Agent Trust Hub on Feb 20, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [NO_CODE] (SAFE): The skill consists entirely of markdown instructions and prompt templates. No executable scripts (Python, Node.js, Shell) are included.
- [DATA_EXFILTRATION] (SAFE): No network operations or sensitive file access patterns were detected.
- [PROMPT_INJECTION] (SAFE): Instructions are focused on a specific reasoning framework. No bypass attempts or system prompt extraction instructions are present.
- [INDIRECT_PROMPT_INJECTION] (SAFE): 1. Ingestion points: Processes user input defined in argument-hint (SKILL.md). 2. Boundary markers: None explicitly defined to wrap input. 3. Capability inventory: The skill has no capabilities to execute commands, write files, or access the network. 4. Sanitization: None detected. Risk is negligible as no exploitable capabilities exist.
Audit Metadata