scroll-experience
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- SAFE (SAFE): No malicious patterns or security vulnerabilities were detected across any threat categories.
- Prompt Injection (SAFE): The instructions follow standard grounding and role-definition practices without attempting to bypass safety filters or override system constraints.
- Data Exposure & Exfiltration (SAFE): No sensitive file paths, credential markers, or unauthorized network operations were identified.
- Remote Code Execution (SAFE): The skill contains static code snippets for documentation purposes only. No commands for downloading or executing remote scripts (e.g., curl | bash) are present.
- Obfuscation (SAFE): All content is human-readable with no use of Base64, zero-width characters, or homoglyphs.
- Indirect Prompt Injection (SAFE): While the skill processes user-provided animation requirements, it lacks exploitable capabilities such as file-system writes or network requests, neutralizing this attack vector.
Audit Metadata