Email Composer
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE] (SAFE): No security issues were detected during the analysis. The skill is limited to instructional text and templates for email composition.
- [NO_CODE] (SAFE): The skill does not contain any executable scripts, binary files, or command-line instructions, effectively eliminating common attack vectors like remote code execution or privilege escalation.
- [DATA_EXPOSURE] (SAFE): All templates utilize generic placeholders such as [Name], [Date], and [Your name]. There are no hardcoded credentials, API keys, or references to sensitive local file paths.
- [INDIRECT_PROMPT_INJECTION] (LOW): While the skill processes user-provided context to generate drafts, it lacks any powerful capabilities (like file writing or network calls) that could be exploited via indirect injection. The risk is limited to the generation of malicious text, which is a baseline risk for all LLM interactions.
Audit Metadata