norrix-docs
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- Prompt Injection (SAFE): No instructions attempting to override system behavior or bypass safety filters were found. The language is purely instructional for task-specific guidance.
- Data Exposure & Exfiltration (SAFE): No hardcoded credentials or sensitive file paths are present. The skill explicitly instructs the agent not to expose secrets.
- Indirect Prompt Injection (INFO): The skill directs the agent to ingest external content from
https://docs.norrix.net/. While this creates an attack surface for indirect injection if the source were compromised, the skill itself lacks any write, execute, or network-sending capabilities, making the risk negligible. - Unverifiable Dependencies & Remote Code Execution (SAFE): The skill contains no code, dependency files, or remote script execution patterns.
Audit Metadata