managing-imposter-syndrome
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): No instructions to bypass safety filters or override system prompts were detected. The skill includes explicit instructions to stay within a professional career coaching scope and refer users to professional help if safety signals appear.
- Data Exposure & Exfiltration (SAFE): No hardcoded credentials, sensitive file paths, or network exfiltration patterns were found. The instructions explicitly advise users not to provide confidential employer information.
- Unverifiable Dependencies & Remote Code Execution (SAFE): No package managers or remote code execution patterns were identified. The skill is entirely text-based instructions and templates.
- Indirect Prompt Injection (LOW): While the skill processes user-provided descriptions of workplace situations (ingestion point in INTAKE.md), the agent's capabilities are limited to generating markdown text (no subprocess, file-write, or network capabilities). This poses no risk of code execution or system modification.
Audit Metadata