uniapp-cloud
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- General Security (SAFE): The skill consists entirely of static markdown files containing educational content and code snippets. No active code execution or malicious behavior was identified.
- Data Exposure (SAFE): No hardcoded credentials, API keys, or sensitive file paths were found. All code examples use generic placeholders (e.g., 'doc-id', 'cloud://xxx.jpg').
- Remote Code & Dependencies (SAFE): The skill does not define any Python or Node.js dependencies, nor does it attempt to download or execute remote scripts. It only references official documentation at doc.dcloud.net.cn.
- Prompt Injection (SAFE): No instructions were found that attempt to bypass safety filters or override system prompts. The instructional language is standard for technical documentation.
- Indirect Prompt Injection (SAFE): The skill serves as a reference library and does not process external untrusted data in an automated execution environment, presenting no significant attack surface for indirect injection.
Audit Metadata