feature-spec-reviewing
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: LOWNO_CODE
Full Analysis
- [Prompt Injection] (SAFE): The content consists of quality assurance criteria and lacks any instructions to bypass safety protocols or override agent behavior.
- [Data Exposure & Exfiltration] (SAFE): No sensitive data, hardcoded secrets, or network transmission patterns are present.
- [Remote Code Execution] (SAFE): No scripts, package managers, or remote download commands are included in the file.
- [Indirect Prompt Injection] (INFO): Although the skill is designed to evaluate external content (feature specs), it possesses no actionable capabilities such as shell access or network requests, effectively neutralizing the risk of indirect injection.
- [Obfuscation] (SAFE): No Base64, zero-width characters, or other encoding techniques are used to hide content.
Audit Metadata