learning-search-optimization
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [INDIRECT_PROMPT_INJECTION] (SAFE): The skill processes untrusted input through the 'content' parameter but lacks the capabilities to act on malicious instructions.\n
- Ingestion points: The 'content' parameter in skill.py (line 26).\n
- Boundary markers: None present in the code.\n
- Capability inventory: No file writing, network requests, or subprocess executions were identified.\n
- Sanitization: The input is truncated to 50 characters (line 30) before being returned.\n- [DATA_EXFILTRATION] (SAFE): No network operations or access to sensitive local files (e.g., credentials) were found.\n- [REMOTE_CODE_EXECUTION] (SAFE): The code does not download or execute remote scripts and avoids unsafe functions like eval() or exec().
Audit Metadata