running-offsites
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): No instructions found that attempt to bypass AI safety filters or override system prompts. The content is strictly limited to the professional task of offsite planning.
- Data Exposure & Exfiltration (SAFE): No hardcoded credentials, sensitive file paths, or network operations (curl, wget) were detected. The skill specifically instructs the AI not to request secrets and to use anonymized data.
- Obfuscation (SAFE): No Base64, zero-width characters, homoglyphs, or other encoding techniques intended to hide malicious content were found.
- Unverifiable Dependencies & Remote Code Execution (SAFE): The skill contains no package installation commands, remote script downloads, or dynamic code execution patterns.
- Privilege Escalation (SAFE): No commands related to administrative access or permission modification (sudo, chmod) are present.
- Persistence Mechanisms (SAFE): No attempts to modify startup scripts, scheduled tasks, or system configurations.
- Metadata Poisoning (SAFE): Metadata in SKILL.md and skillpack.json is consistent with the stated purpose of the skill and does not contain deceptive instructions.
- Indirect Prompt Injection (SAFE): While the skill ingests user data during the intake process, it possesses no dangerous capabilities (like shell execution or network access) that could be exploited via malicious input.
- Time-Delayed / Conditional Attacks (SAFE): No logic found that triggers behavior based on date, time, or specific environmental conditions.
- Dynamic Execution (SAFE): No runtime code generation, compilation, or unsafe deserialization patterns were detected.
Audit Metadata