causal-inference-root-cause
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- Prompt Injection (SAFE): No instructions found that attempt to bypass safety filters, extract system prompts, or override agent behavior.
- Data Exposure & Exfiltration (SAFE): No evidence of sensitive data access, hardcoded credentials, or external network communication.
- Obfuscation (SAFE): No encoded strings, zero-width characters, homoglyphs, or hidden content detected.
- Unverifiable Dependencies & Remote Code Execution (SAFE): No external packages are requested, and no remote scripts are downloaded or executed.
- Indirect Prompt Injection (LOW): The skill identifies a data ingestion surface where the agent processes user-provided descriptions of incidents or effects. This represents a potential surface for instructions embedded in data, though the risk is minimal as the skill does not grant the agent high-risk capabilities.
- Ingestion points: User-provided problem descriptions (Step 1: Define the effect).
- Boundary markers: Uses structured markdown templates to organize data.
- Capability inventory: No dangerous capabilities (like shell execution or network requests) are defined in the skill files.
- Sanitization: Not explicitly implemented in the skill logic.
Audit Metadata