django-coder
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): The skill contains no instructions to bypass safety filters, ignore previous instructions, or reveal system prompts.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, sensitive file path access, or network exfiltration patterns were detected. The project structure and code snippets follow standard development practices.
- [Obfuscation] (SAFE): The content is clear and uses no encoding, zero-width characters, or homoglyphs to hide malicious intent.
- [Unverifiable Dependencies] (SAFE): The skill references standard and trusted Python packages:
django,asgiref, anddjangorestframework. - [Indirect Prompt Injection] (SAFE): While the skill builds applications that process untrusted web data, it explicitly enforces 'Security First' principles, specifically citing CSRF, SQL injection, and XSS prevention. It relies on Django's built-in security framework to mitigate injection risks.
- [Command Execution] (SAFE): Although the
Bashtool is permitted, the instructions do not include any dangerous command patterns, privilege escalation, or persistence mechanisms.
Audit Metadata