eg-extension
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides static documentation and YAML templates to assist users in configuring Envoy Gateway. It does not execute scripts, perform network operations, or access the file system.
- [SAFE]: The skill includes explicit security warnings regarding the use of EnvoyPatchPolicy, identifying it as a 'last resort' with 'serious security risks' and recommending RBAC protections.
- [SAFE]: All external references, such as OCI image paths and Wasm binary URLs, are clearly labeled as placeholders (e.g., 'example.com', 'my-registry') intended for user customization rather than agent-driven execution.
- [SAFE]: Analysis of the instructions and metadata revealed no evidence of prompt injection, obfuscation, or data exfiltration attempts.
Audit Metadata