Cover Letter Generator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [Prompt Injection] (SAFE): No instructions to override agent behavior or bypass safety constraints were detected.
- [Data Exposure & Exfiltration] (SAFE): No sensitive file access, hardcoded credentials, or network requests are present.
- [Unverifiable Dependencies & Remote Code Execution] (SAFE): The skill does not install any packages or download/execute remote scripts.
- [Indirect Prompt Injection] (LOW): The skill processes external, untrusted data (resumes and job descriptions). While this is an ingestion surface for indirect injection, the skill lacks any dangerous capabilities—such as file writing or network access—that could be leveraged by an attacker.
- [Dynamic Execution] (SAFE): No use of eval, exec, or runtime code generation was found.
Audit Metadata