redis-specialist
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): The skill maintains a consistent expert persona and focuses on Redis engineering principles. No override markers, bypass instructions, or system prompt extraction patterns were found.
- Data Exposure & Exfiltration (SAFE): The skill does not access sensitive local file paths (like ~/.ssh or ~/.aws) and contains no network exfiltration logic. Hardcoded secrets are not present.
- Obfuscation (SAFE): All markdown and reference files are written in clear text. There are no zero-width characters, base64-encoded strings, or homoglyph attacks.
- Remote Code Execution & Dependencies (SAFE): No remote script execution patterns (e.g., curl-to-bash) are present. The mention of the 'redlock' package is within educational code snippets and does not constitute an unverifiable dependency installation at runtime.
- Indirect Prompt Injection (SAFE): Although the skill is designed to analyze user-provided code (JavaScript/TypeScript), it lacks executable capabilities like file system writing or network requests that could be triggered by malicious input.
- Privilege Escalation & Persistence (SAFE): The skill contains no commands related to sudo, systemd, shell profiles, or other persistence mechanisms.
Audit Metadata