knowledge-synthesizer
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWNO_CODE
Full Analysis
- [NO_CODE] (SAFE): The analyzed files consist of a markdown instruction file (SKILL.md) and several plain text descriptions. No scripts, binaries, or automated configuration files are present in the skill package.
- [DATA_EXPOSURE] (SAFE): No credentials, sensitive paths, or exfiltration patterns were detected.
- [INDIRECT_PROMPT_INJECTION] (LOW): The skill's primary function is to process and synthesize external documents. While this creates an inherent attack surface for indirect prompt injection at runtime, the skill itself provides no executable capabilities (such as file system writes, network requests, or subprocess execution) that could be exploited. The risk is limited to the agent's internal reasoning behavior.
Audit Metadata