effect-resources-scope
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [SAFE] (SAFE): No malicious patterns, prompt injections, or unauthorized data access behaviors were detected.
- [COMMAND_EXECUTION] (INFO): The skill identifies allowed tools like Grep, Read, and Glob, and provides specific commands for searching local library source code (e.g., docs/effect-source/). These operations are local, scoped to the workspace, and intended for library usage guidance.
- [DATA_EXFILTRATION] (SAFE): No network requests or attempts to access sensitive system files (e.g., credentials or SSH keys) are present.
- [INDIRECT_PROMPT_INJECTION] (LOW): While the skill directs the agent to ingest local file content which could theoretically contain instructions, the target directory (docs/effect-source/) is a standard local reference path for developers and does not represent an untrusted external ingestion point.
Audit Metadata