brand-guidelines
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No instructions to override agent behavior, bypass safety filters, or extract system prompts were detected.
- [Data Exposure & Exfiltration] (SAFE): The skill does not access sensitive file paths or perform network operations. No hardcoded credentials or secrets are present.
- [Obfuscation] (SAFE): The text is clear and does not contain Base64, zero-width characters, or other encoding techniques intended to hide malicious content.
- [Unverifiable Dependencies & Remote Code Execution] (SAFE): While the skill mentions the use of 'python-pptx' in its technical details, it does not perform any package installations or download/execute remote scripts.
- [Indirect Prompt Injection] (LOW): The skill defines a process for styling external data ('any sort of artifact'), which creates a potential ingestion surface for untrusted data.
- Ingestion points: Content provided by the user for styling (SKILL.md).
- Boundary markers: Absent; the skill does not define specific delimiters for processed data.
- Capability inventory: Styling and formatting presentations using 'python-pptx' (SKILL.md).
- Sanitization: Absent; there is no mention of escaping or validating input text before application.
Audit Metadata