prompt-engineering
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is composed entirely of Markdown reference files (SKILL.md, references/synthetic-data.md, references/techniques.md). It does not include any scripts (Python, JavaScript, shell), configuration files that trigger execution, or binary data. Since no code is shipped with the skill, it does not present a technical attack surface.- [PROMPT_INJECTION]: While the documentation in 'references/synthetic-data.md' identifies 'Prompt injection' as a category of adversarial input for testing purposes, these are presented as educational examples rather than instructions for the agent. No actual prompt injection attempts directed at the analyzing agent were found.- [DATA_EXFILTRATION]: There are no network operations, hardcoded credentials, or requests to access sensitive file paths within the documentation.- [REMOTE_CODE_EXECUTION]: The skill does not perform any external downloads, package installations, or execution of code from remote sources.
Audit Metadata