api-contract-normalizer
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): The content is purely instructional regarding API design and does not attempt to override agent safety protocols.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, sensitive file paths, or unauthorized network communication patterns were identified.
- [Remote Code Execution] (SAFE): The skill contains code snippets for Express middleware but does not include any mechanisms to download or execute remote code at runtime.
- [Indirect Prompt Injection] (SAFE): While the skill defines patterns for handling external API data, it does not implement automated actions (like shell execution) that could be triggered by malicious data within those payloads.
Audit Metadata