zola-blog
Pass
Audited by Gen Agent Trust Hub on Feb 23, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill executes a Python command to perform markdown conversion using a local toolkit. These operations are functional for the stated purpose and do not interact with untrusted remote code.
- [DATA_EXFILTRATION] (SAFE): All file operations are directed to specific local directories on the D: drive. There are no unauthorized network requests or mechanisms to transmit local data to external servers.
- [REMOTE_CODE_EXECUTION] (SAFE): The skill does not download or execute scripts from the internet. All logic is contained within the skill files or existing local modules.
- [PROMPT_INJECTION] (SAFE): While the skill processes user-supplied text (markdown and outlines), it is used for translation and stylistic refinement. It lacks sensitive capabilities (like credentials access or system modification) that would make it a high-risk target for indirect prompt injection.
Audit Metadata