compliance-anthropic
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists entirely of text-based instructions and checklists for legal compliance workflows. It does not include any scripts, executable commands, or remote code downloads.
- [SAFE]: No credentials, sensitive file paths, or network operations were detected in the provided files.
- [INDIRECT_PROMPT_INJECTION]: The skill is intended to process untrusted data from external sources, such as Data Processing Agreements (DPAs) and data subject requests.
- Ingestion points: Data subject requests and vendor DPAs processed at runtime (SKILL.md).
- Boundary markers: Absent; the instructions do not specify delimiters for external content.
- Capability inventory: None; the skill does not use subprocesses, file writes, or network tools.
- Sanitization: Absent; there are no instructions for sanitizing or escaping the processed text.
Audit Metadata