file-save-protocol-stock
Pass
Audited by Gen Agent Trust Hub on Feb 22, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill provides instructions for using a restricted 'Write' tool to save analysis data. It does not attempt to execute shell commands, binary files, or arbitrary scripts.
- [DATA_EXFILTRATION] (SAFE): All file operations are directed to a localized 'consultations/' directory. No network-based exfiltration patterns or access to sensitive system paths (e.g., SSH keys, environment variables) were found.
- [PROMPT_INJECTION] (SAFE): The skill contains legitimate operational rules aimed at preventing 'hallucinations' and ensuring data integrity. There are no patterns suggesting attempts to bypass safety filters or override agent instructions.
- [INDIRECT_PROMPT_INJECTION] (LOW): The skill defines a protocol for handling external analysis data. Although it manages data ingestion, the risk is minimal due to the enforcement of structured formats. 1. Ingestion points: 'analysis_result' JSON data and 'output_path' variables. 2. Boundary markers: Mandates output in structured JSON and Markdown formats with fixed naming conventions. 3. Capability inventory: Uses the 'Write' tool for file persistence. 4. Sanitization: Explicit sanitization steps are not defined within this specific protocol.
Audit Metadata