tech-trpc
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No malicious instructions, behavior overrides, or bypass attempts were detected in the skill instructions or metadata.
- [Data Exposure & Exfiltration] (SAFE): The skill does not access sensitive file paths, hardcode credentials, or perform unauthorized network operations.
- [Unverifiable Dependencies & Remote Code Execution] (SAFE): No external package dependencies or remote script execution patterns were identified. All examples are static code snippets.
- [Privilege Escalation] (SAFE): There are no commands that attempt to acquire elevated permissions or modify system-level configurations.
- [Dynamic Execution] (SAFE): The skill does not generate or execute code at runtime and contains no unsafe deserialization patterns.
- [Metadata Poisoning] (SAFE): Metadata fields are descriptive and contain no hidden or deceptive instructions.
- [Indirect Prompt Injection] (SAFE): The skill does not ingest untrusted external data into the agent's context.
- [Security Best Practices] (SAFE): The skill explicitly encourages security-positive patterns, such as implementing a strict procedure hierarchy for authorization and ensuring mandatory output schema validation to prevent data leakage.
Audit Metadata