Type Hints
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Dynamic Execution (SAFE): The
scripts/validate.pyfile usesyaml.safe_load()to process configuration files, which is a security best practice that prevents arbitrary code execution during YAML parsing. - Data Exposure & Exfiltration (SAFE): No sensitive file paths (e.g., SSH keys, AWS credentials) or hardcoded secrets were found. There are no network-based exfiltration patterns or non-whitelisted domain interactions.
- Prompt Injection (SAFE): The skill's instructions and documentation do not contain any patterns designed to override agent behavior, bypass safety filters, or extract system prompts.
- Unverifiable Dependencies & Remote Code Execution (SAFE): The skill does not attempt to download or execute remote scripts (e.g., via curl | bash) and does not specify any untrusted external package installations.
Audit Metadata