prompt-template-builder
Pass
Audited by Gen Agent Trust Hub on Feb 15, 2026
Risk Level: LOW
Full Analysis
- [Prompt Injection] (SAFE): The content consists of templates and guidelines for prompt construction. No instructions to bypass safety filters or override system behavior were found.
- [Data Exposure] (SAFE): No hardcoded credentials, sensitive file paths, or unauthorized network operations are present in the documentation or snippets.
- [Indirect Prompt Injection] (LOW): The skill provides templates that interpolate untrusted data (like user-submitted code) directly into prompts using backticks as delimiters. While this creates a potential injection surface for the resulting application, the risk is mitigated by the included examples of strict output schema validation.
- [Dependencies] (SAFE): The skill references 'zod', a widely trusted and standard Node.js library for schema validation.
Audit Metadata