application-security
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): The skill is purely informational documentation. It provides secure coding guidelines and examples of common vulnerabilities (Injection, SSRF, etc.) for developer education.
- [Indirect Prompt Injection] (SAFE): While the skill permits file-reading tools (Read, Glob, Grep) which create an ingestion surface for untrusted data, the skill itself lacks any dangerous output capabilities (network, command execution, or dynamic code execution) that could be exploited via indirect prompt injection.
Audit Metadata