ask-brainstorm
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Category 1: Prompt Injection] (SAFE): The instructions in SKILL.md and README.md focus on legitimate workflow alignment and do not attempt to bypass system safety filters or extract system prompts.
- [Category 2: Data Exposure & Exfiltration] (SAFE): No sensitive file paths, hardcoded credentials, or unauthorized network requests are present.
- [Category 4: Unverifiable Dependencies & Remote Code Execution] (SAFE): The file 'scripts/validate.py' is a benign placeholder script with no external network calls or dynamic code execution.
- [Category 8: Indirect Prompt Injection] (SAFE): While the skill ingests untrusted user intent for brainstorming, it lacks any exploitable capabilities (such as file-write or network-send) to facilitate an attack. 1. Ingestion points: User intent/requirements via triggered dialogue. 2. Boundary markers: Absent. 3. Capability inventory: None (scripts/validate.py is a non-functional placeholder). 4. Sanitization: Absent.
Audit Metadata