long-running-agent
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to utilize standard command-line tools for software development, including
gitfor version control,dotnetfor .NET core applications, andnpmfor Node.js package management. - [EXTERNAL_DOWNLOADS]: The skill references the installation of standard software packages through well-known registries (e.g.,
npm install express,dotnet add package Npgsql.EntityFrameworkCore.PostgreSQL). No execution of arbitrary remote scripts or untrusted URLs was detected. - [PROMPT_INJECTION]: The documentation contains operational constraints and workflow instructions (e.g., prohibiting code implementation during the initialization phase) to ensure the agent follows the harness logic. These are task-specific guidelines and do not attempt to bypass safety filters or ignore prior instructions.
- [DATA_EXFILTRATION]: Mentions of network activity are limited to local testing and health checks (e.g.,
curl http://localhost:5000/health). There is no evidence of sensitive system file access or data transmission to untrusted external domains. - [NO_CODE]: The skill consists of markdown documentation, JSON templates, and process guides. It does not package executable binaries, obfuscated scripts, or dangerous automated startup routines.
Audit Metadata