calci-prediction-market
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- SAFE (INFO): No security issues were detected. The skill consists of Markdown documentation providing context for reasoning about market data. It follows standard documentation practices for APIs and domain models. While it mentions API authentication headers (e.g., KALSHI-ACCESS-KEY), it does not include hardcoded secrets or credentials.
- INDIRECT_PROMPT_INJECTION (INFO): The skill is designed to process external market data (JSON). While this data could theoretically contain malicious instructions in text fields like 'title' or 'subtitle', the skill itself only requests read-only tools (Read, Grep, Glob) and does not provide capabilities for external side effects or code execution. The risk is negligible within the scope of this specific skill.
Audit Metadata