moai-foundation-philosopher
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [Prompt Injection] (SAFE): The skill contains structured instructions for logical reasoning (First Principles, Bias Mitigation) but includes no attempts to override system prompts or bypass safety guardrails.
- [Data Exposure & Exfiltration] (SAFE): There are no network requests, file system access patterns, or hardcoded credentials. All files are static Markdown.
- [Remote Code Execution & Dependencies] (SAFE): The skill does not list any Python or Node.js packages and does not download or execute remote scripts. It is a purely instructional framework.
- [Indirect Prompt Injection] (LOW):
- Ingestion points: Data enters the process via the
AskUserQuestionmechanism described in all module files. - Boundary markers: The templates (e.g., in
modules/assumption-matrix.md) do not explicitly define delimiters for user input, though they provide a structured format for the agent to follow. - Capability inventory: Analysis of all files reveals zero subprocess calls, network operations, or file-write capabilities.
- Sanitization: No explicit sanitization or validation of user-provided evidence is mentioned beyond human-in-the-loop confirmation.
Audit Metadata