pytincture-dhxpyt
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No instructions attempting to bypass agent safety or override system behavior were found. The language is purely instructional for the Pytincture framework.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, sensitive file paths, or unauthorized network operations were detected.
- [Remote Code Execution] (SAFE): While the skill describes running Python in the browser via Pyodide (standalone mode) or as a local service, it does not involve downloading and executing arbitrary remote scripts from untrusted sources. The references to .whl files are presented in a troubleshooting context for local development.
- [Obfuscation] (SAFE): No base64 encoding, zero-width characters, or other obfuscation techniques were found in the skill content.
- [Indirect Prompt Injection] (SAFE): The skill defines a UI development surface (grids, forms, etc.). While processing external data through these components creates a standard attack surface, the skill does not contain instructions that would facilitate exploitation of this surface.
Audit Metadata