skills/pluginagentmarketplace/custom-plugin-flutter/custom-plugin-flutter-skill-accessibility/Gen Agent Trust Hub
custom-plugin-flutter-skill-accessibility
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [Data Exposure & Exfiltration] (SAFE): No sensitive file paths or credentials detected. Network operations are limited to illustrative Flutter code examples (e.g., Image.network) and do not occur during skill execution.
- [Unverifiable Dependencies & Remote Code Execution] (SAFE): The skill does not download or execute remote code. It uses standard, well-known libraries like PyYAML for validation tasks.
- [Obfuscation] (SAFE): No encoded strings, homoglyphs, or hidden characters were found in the skill body or metadata.
- [Privilege Escalation] (SAFE): No commands requesting administrative privileges (sudo, chmod 777, etc.) are present.
- [Persistence Mechanisms] (SAFE): No attempts to modify shell profiles, cron jobs, or system services were detected.
- [Indirect Prompt Injection] (LOW): While the skill is designed to analyze and implement code, it lacks automated execution of untrusted external content. The risk is limited to the agent's reasoning process when processing user-provided Flutter code.
Audit Metadata