ai-workflow-engineering
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a meta-template for document creation. It guides the agent to gather requirements and generate a series of markdown artifacts representing an AI workflow.
- [DATA_EXPOSURE_AND_EXFILTRATION]: Analysis of the skill body and logic confirms there are no commands for network communication (e.g., curl, wget) or access to sensitive system paths (e.g., credentials, SSH keys).
- [REMOTE_CODE_EXECUTION]: No external package installations or remote script executions are present. The skill does not utilize any programming languages or runtime environments that could execute external code.
- [COMMAND_EXECUTION]: The skill does not attempt to spawn subprocesses or execute shell commands. All operations are limited to text processing and markdown generation.
- [INDIRECT_PROMPT_INJECTION]: While the skill processes user-provided inputs to generate documentation (Phase 1-13), it lacks executable capabilities. Consequently, any instructions embedded in the user input would only be reflected in the generated text artifacts and cannot trigger malicious actions by the agent.
Audit Metadata