architecture-design
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [NO_CODE] (SAFE): The skill is composed entirely of natural language instructions and Markdown documentation. There are no Python scripts, JavaScript files, or shell commands present in the skill package.
- [DATA_EXPOSURE & EXFILTRATION] (SAFE): There are no patterns suggesting unauthorized file access or network communication. The skill only references a local documentation file 'references/tech-selection-guide.md'.
- [REMOTE_CODE_EXECUTION] (SAFE): No remote code execution patterns, package installations, or dynamic script executions were detected.
- [PROMPT_INJECTION] (SAFE): The instructions use standard framing for task performance. No malicious override attempts, jailbreak patterns, or system prompt extraction commands were found.
- [INDIRECT PROMPT INJECTION] (LOW): The skill possesses a surface for indirect prompt injection as it processes user-provided business requirements. However, its capabilities are limited to generating structured text and architectural diagrams (Mermaid), which poses minimal risk of downstream exploitation.
Audit Metadata