Schedule-Content
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): The instructions in SKILL.md focus on workflow orchestration and stage-based decision making. No attempts to bypass safety filters or override system instructions were found.
- Data Exposure & Exfiltration (SAFE): No hardcoded credentials, sensitive file path access, or network communication code (curl, wget, requests) exist in the provided files.
- Unverifiable Dependencies & Remote Code Execution (SAFE): No external packages are requested for installation. The only script (scripts/example.py) is a harmless local placeholder.
- Obfuscation (SAFE): All text is human-readable with no Base64, zero-width characters, or homoglyph-based evasion techniques.
- Indirect Prompt Injection (LOW): The skill possesses an ingestion surface for user-provided content ideas. However, the evidence chain shows a lack of high-risk capabilities (subprocess execution, network requests, or file writes) in the scripts, rendering the attack surface inert.
Audit Metadata