esx-framework
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): No instructions attempting to override agent behavior or bypass safety guidelines were found.
- Data Exposure & Exfiltration (SAFE): No sensitive file access, hardcoded credentials, or unauthorized network operations were detected.
- Obfuscation (SAFE): No hidden or encoded content such as Base64, zero-width characters, or homoglyphs was found.
- Unverifiable Dependencies & Remote Code Execution (SAFE): No suspicious package installations or remote script executions were identified. References to community-standard libraries like
es_extended,oxmysql, andox_libare consistent with the skill's purpose. - Privilege Escalation (SAFE): No commands for acquiring unauthorized system-level permissions were detected.
- Persistence Mechanisms (SAFE): No attempts to maintain unauthorized access across sessions were found.
- Metadata Poisoning (SAFE): Skill metadata is descriptive and aligns with the technical content provided.
- Indirect Prompt Injection (SAFE): The skill provides static code templates and does not ingest untrusted external data in a manner that creates an injection surface.
- Time-Delayed / Conditional Attacks (SAFE): No time-gated or conditional malicious logic was identified.
- Dynamic Execution (SAFE): No unsafe runtime code generation or deserialization patterns were detected.
Audit Metadata