learning-faq-generator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [Dynamic Execution] (LOW): The skill dynamically modifies the Python system path using a relative path computed from
__file__to import its base framework. While technically dynamic loading from a computed path, this is standard boilerplate for the skill's execution environment. - [Indirect Prompt Injection] (LOW): The skill processes untrusted user input via the
contentparameter which could contain hidden instructions. Ingestion points: Thecontentparameter inskill.py. Boundary markers: None present in the execution logic. Capability inventory: The skill has no dangerous capabilities such as network access, file-system writes, or shell command execution. Sanitization: No input validation or escaping is applied to the content before processing.
Audit Metadata