conducting-interviews
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFENO_CODE
Full Analysis
- Category 10: Dynamic Execution (SAFE): The skill is entirely composed of Markdown and JSON files. No executable scripts (.py, .js, .sh) or code generation logic were found.
- Category 4: Unverifiable Dependencies & Remote Code Execution (SAFE): There are no package manager files (package.json, requirements.txt) or commands that download and execute remote content.
- Category 2: Data Exposure & Exfiltration (SAFE): No hardcoded credentials, sensitive file path access, or network calls (curl, fetch) were detected. The URLs present in the metadata are for reference purposes only.
- Category 1: Prompt Injection (SAFE): Instructional language is focused on interview methodology and does not attempt to override the AI's core safety filters or extract system prompts.
- Category 8: Indirect Prompt Injection (LOW): The skill is designed to ingest untrusted data (candidate resumes). While it lacks explicit boundary markers for this data, its capabilities are limited to generating interview artifacts in text form, posing no threat to the host system.
Audit Metadata