learning-help-system
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Indirect Prompt Injection] (SAFE): The skill ingests untrusted input through the 'content' parameter. However, an analysis of all script files confirms a complete lack of dangerous capabilities (such as subprocess execution, file writing, or network requests), rendering the injection surface non-exploitable. No boundary markers or sanitization are present, but they are not required given the lack of 'sinks'.
- [Network and File Security] (SAFE): No evidence of network calls (curl, wget, requests) or sensitive file system access was found. The skill operates exclusively on provided parameters.
- [Malicious Patterns] (SAFE): No signs of obfuscation, persistence mechanisms, or privilege escalation were detected.
- [Code Quality] (INFO): The 'execute' method in 'skill.py' references an undefined variable 'skill_dir' in the output dictionary and artifacts list. While this will cause a NameError at runtime, it does not constitute a security vulnerability.
Audit Metadata