Resume Section Builder
Pass
Audited by Gen Agent Trust Hub on Feb 15, 2026
Risk Level: LOWNO_CODE
Full Analysis
- [Prompt Injection] (SAFE): No override markers, jailbreak attempts, or system prompt extraction patterns were found. All instructions are focused on the task of resume building.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, sensitive file path access, or network operations (curl/wget) are present. URLs in examples (e.g., github.com/user/project) are placeholders and benign.
- [Obfuscation] (SAFE): No Base64 encoding, zero-width characters, or homoglyphs were detected. The content is entirely human-readable markdown.
- [Unverifiable Dependencies & Remote Code Execution] (SAFE): The skill does not specify any external dependencies (Python or Node.js) and includes no commands for downloading or executing remote code.
- [Privilege Escalation] (SAFE): No commands requesting administrative privileges (sudo, chmod) or modifying system configurations were found.
- [Indirect Prompt Injection] (SAFE): While the skill is designed to process user-provided content (resume details), it lacks any executable capabilities. In the context of the capability-based severity tier, this is classified as SAFE/INFO as it only performs text display/formatting without external side effects.
Audit Metadata