clojure-dev
Pass
Audited by Gen Agent Trust Hub on Feb 22, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [PROMPT_INJECTION] (SAFE): No instructions to override agent behavior, bypass safety filters, or extract system prompts were detected.
- [DATA_EXFILTRATION] (SAFE): No commands accessing sensitive local files (e.g., SSH keys, AWS credentials) or making unauthorized network requests were found.
- [REMOTE_CODE_EXECUTION] (SAFE): No remote scripts are downloaded or piped to interpreters. The skill references standard Clojure tooling.
- [COMMAND_EXECUTION] (SAFE): The 'Common commands' section lists standard, non-malicious development commands for the Clojure CLI.
- [INDIRECT_PROMPT_INJECTION] (LOW): The skill defines workflows for reading project files and test outputs, which constitutes a data ingestion surface. However, this is inherent to the stated purpose of a development tool, and no exploitation patterns are present.
- [DYNAMIC_EXECUTION] (LOW): The skill describes REPL-driven development, which involves dynamic code evaluation. This is a primary intended function for Clojure development and is documented for legitimate use cases.
Audit Metadata