learning-peer-tutoring
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Safe] (SAFE): No malicious patterns or security vulnerabilities were identified. The skill's logic is limited to processing input text and returning structured metadata.
- [No Code Execution] (SAFE): The code does not contain any calls to eval(), exec(), or subprocess functions. It relies on standard library imports and a static local framework path.
- [Data Safety] (SAFE): No sensitive file paths, hardcoded credentials, or data exfiltration patterns were detected. The skill only performs basic string manipulation and returns results via a dictionary.
- [Indirect Prompt Injection] (SAFE): The skill ingests untrusted data via the 'content' parameter but lacks the capabilities (e.g., filesystem or network access) required to translate an injection into a harmful action.
- Ingestion points: parameters['content'] in skill.py
- Boundary markers: Absent
- Capability inventory: None detected; the skill only returns text metadata.
- Sanitization: Absent.
Audit Metadata