thailand-pdpa
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The regulatory and workflow documentation in SKILL.md and the references directory provides accurate information on Thailand's PDPA without any attempts at prompt injection or bypassing safety filters.
- [SAFE]: The Python utility 'scripts/process.py' implements logical assessment functions for lawful bases and data subject rights using only standard libraries. It lacks any dangerous capabilities such as network access, file system modification, or command execution.
- [SAFE]: An analysis of the data ingestion surface in 'scripts/process.py' (e.g., data subject names and activity descriptions) confirms that while these fields take user-provided strings, the lack of exploitable capabilities prevents indirect prompt injection risks.
- [SAFE]: No obfuscated content, hardcoded credentials, or suspicious external dependencies were found in the metadata or skill assets.
Audit Metadata