manage-token-budget
Pass
Audited by Gen Agent Trust Hub on Mar 18, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, hardcoded credentials, or unauthorized network operations were detected. The skill is entirely instructional and focused on resource management.
- [PROMPT_INJECTION]: The skill was evaluated for indirect prompt injection surfaces:
- Ingestion points: Step 2 and Step 4 involve processing external data such as "tool outputs" and "search results."
- Boundary markers: Not explicitly defined in the procedures.
- Capability inventory: The frontmatter specifies access to tools including Bash, Write, and Edit.
- Sanitization: No specific filtering or escaping of incoming tool data is described.
- Note: This configuration is a standard surface for management skills and does not contain malicious override instructions.
- [COMMAND_EXECUTION]: The skill mentions the use of Bash for operational instrumentation, but no dangerous or arbitrary command execution patterns are present.
Audit Metadata