vibe-mvp-advisor
Pass
Audited by Gen Agent Trust Hub on Feb 20, 2026
Risk Level: SAFENO_CODE
Full Analysis
- Prompt Injection (SAFE): The skill contains no instructions designed to bypass safety filters, extract system prompts, or override core agent constraints.\n- Data Exposure & Exfiltration (SAFE): There are no patterns suggesting access to sensitive local files or network requests to external domains.\n- Remote Code Execution (SAFE): The skill does not include any Python or Node.js scripts, package dependencies, or shell commands.\n- Indirect Prompt Injection (SAFE): Although the skill processes untrusted user input, it poses no threat due to a lack of exploitable capabilities.\n
- Ingestion points: SKILL.md via user-supplied idea descriptions in the argument-hint.\n
- Boundary markers: Absent.\n
- Capability inventory: No dangerous capabilities (subprocess, file-write, network) are present in any files.\n
- Sanitization: Absent.\n- Persistence & Privilege Escalation (SAFE): No commands for modifying system startup files or acquiring root/admin privileges were found.
Audit Metadata