jquery-4
Fail
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: HIGHPROMPT_INJECTION
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill audits untrusted external codebase files.
- Ingestion points: Reads project .js and configuration files in Step 4.
- Boundary markers: None present to isolate untrusted code.
- Capability inventory: File system read access and local output generation; no network or execution capabilities.
- Sanitization: Untrusted code content is not sanitized.
- [External Scan Alert] (INFO): The scanner alert for 'jQuery.is' is a false positive resulting from documentation of standard jQuery function names.
Recommendations
- Contains 1 malicious URL(s) - DO NOT USE
Audit Metadata