personal-productivity
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [NO_CODE] (SAFE): The skill package contains only Markdown documentation and templates. No executable scripts, Python code, or shell commands are included.
- [DATA_EXPOSURE] (SAFE): Instructions in
SKILL.mdspecifically warn the agent not to request secrets, credentials, or sensitive personal details from the user. - [INDIRECT_PROMPT_INJECTION] (SAFE): The skill processes untrusted user data (calendar text dumps). 1. Ingestion points:
SKILL.md(Workflow Step 2) andreferences/INTAKE.md. 2. Boundary markers: Absent. 3. Capability inventory: None; the skill has no file-system, network, or execution capabilities. 4. Sanitization: Absent. The lack of capabilities makes this surface non-exploitable. - [EXTERNAL_DOWNLOADS] (SAFE): No external dependencies are requested, and no remote scripts are executed.
- [PROMPT_INJECTION] (SAFE): No malicious override patterns or safety filter bypasses were detected in the skill instructions.
Audit Metadata