compliance-checker
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security threats or malicious patterns were detected. The skill functions as a local utility for data validation and consistency checks.
- [COMMAND_EXECUTION]: The skill uses a Python script (
scripts/run_checks.py) for string comparisons and JSON processing. It does not invoke shell commands, subprocesses, or any functions that allow arbitrary code execution. The script processes input files provided via command-line arguments and writes a report to a local path. - [DATA_EXFILTRATION]: All operations are performed locally. There are no network requests, API calls, or data transmissions to external domains. File access is restricted to the paths explicitly provided at execution time.
- [REMOTE_CODE_EXECUTION]: The skill does not download external packages or scripts. It relies solely on the provided logic and standard Python libraries (json, sys, pathlib, typing).
- [PROMPT_INJECTION]: The rule definitions in the markdown files (e.g., rules/ich_e9r1.md) are strictly instructional and focused on domain-specific compliance standards. No patterns suggesting attempts to override AI instructions or bypass safety filters were found.
Audit Metadata