zod-4
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): No instructions targeting agent behavior override or safety filter bypass were found. Content is strictly technical documentation.- Data Exposure & Exfiltration (SAFE): No hardcoded credentials, sensitive file paths, or unauthorized network operations were detected. Code examples use generic placeholders.- Unverifiable Dependencies & Remote Code Execution (SAFE): The skill references reputable libraries (zod, react-hook-form) for template purposes. No remote scripts or unverified package installations are present.- Persistence & Privilege Escalation (SAFE): No commands related to system persistence or unauthorized privilege elevation (e.g., sudo, chmod) were identified.- Indirect Prompt Injection (SAFE): The skill serves as a static reference for code generation; it does not process untrusted external data into the agent's prompt context. Evidence: 1. Ingestion: None. 2. Boundary markers: N/A. 3. Capabilities: Bash, WebFetch, Task (declared in metadata). 4. Sanitization: N/A.
Audit Metadata