idea-to-icp
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is composed exclusively of Markdown files containing logic for business analysis and structured data extraction. No malicious patterns or security vulnerabilities were identified.
- [NO_CODE]: There are no scripts (Python, JavaScript, Shell, etc.) included in the skill. This eliminates the risk of remote code execution, command injection, or privilege escalation from the skill itself.
- [PROMPT_INJECTION]: The instructions are focused on guiding the LLM through a specific multi-phase business workflow. There are no patterns typical of jailbreaks or instructions to bypass safety filters or reveal system prompts.
- [DATA_EXFILTRATION]: The skill does not contain any network-enabled commands (e.g., curl, wget, fetch) or references to external non-whitelisted domains. It does not attempt to access sensitive local files such as credentials or SSH keys.
- [COMMAND_EXECUTION]: No subprocess calls, system commands, or shell operations are present in the skill definition or workflows.
Audit Metadata