fundamentals
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): No instructions found that attempt to override agent behavior or bypass safety filters. The content is strictly educational.
- Data Exposure & Exfiltration (SAFE): No hardcoded credentials, sensitive file paths, or network operations detected. The
scripts/validate.pyscript only interacts with the local skill directory. - Obfuscation (SAFE): No Base64 encoding, zero-width characters, or other obfuscation techniques detected in any of the files.
- Unverifiable Dependencies & Remote Code Execution (SAFE): No external package installations or remote script executions found. The scripts included are for local validation and use standard libraries.
- Privilege Escalation (SAFE): No commands found that attempt to elevate permissions (e.g., sudo, chmod 777).
- Persistence Mechanisms (SAFE): No attempts to modify shell profiles, cron jobs, or system services detected.
- Metadata Poisoning (SAFE): The skill metadata (name, description, author) is consistent with the skill's stated purpose and contains no hidden instructions.
- Indirect Prompt Injection (SAFE): While the skill validates a configuration file, it does not ingest untrusted external data from the web or other APIs that could lead to indirect injection.
- Time-Delayed / Conditional Attacks (SAFE): No logic found that triggers behavior based on dates, times, or specific environment conditions.
- Dynamic Execution (SAFE): No use of
eval(),exec(), or runtime compilation. The validation script usesyaml.safe_load()for parsing configuration, which is a secure practice.
Audit Metadata