zte-progression
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [INDIRECT_PROMPT_INJECTION] (LOW): The skill processes internal project files (e.g., @agentic-kpis.md). While this presents a surface for indirect prompt injection, the skill's capabilities are restricted to read-only operations (Read, Grep, Glob) and lacks network or write access, mitigating the risk to informational influence only.
- [COMMAND_EXECUTION] (SAFE): No arbitrary command execution or subprocess spawning detected.
- [DATA_EXFILTRATION] (SAFE): No network operations or access to sensitive credential files detected.
Audit Metadata