zod-schema-generator
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: No malicious patterns, hardcoded secrets, or unauthorized network behaviors were detected in the skill logic. The skill serves its stated purpose as a code generation utility.
- [PROMPT_INJECTION]: The skill processes untrusted input to generate code, creating a surface for indirect prompt injection. \n- Ingestion points: Processes user-provided Prisma models, TypeScript interfaces, and JSON examples (SKILL.md). \n- Boundary markers: Absent; the skill does not use specific delimiters to isolate user-provided data from instructions. \n- Capability inventory: The skill is limited to code block generation; no subprocess calls, file-write, or network operations are present across the skill files. \n- Sanitization: Absent; the skill performs structural analysis of input but does not sanitize content.
Audit Metadata