readthedocs-write-config
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): The instructions in
SKILL.mdare purely technical and provide a workflow for generating configuration files. There are no attempts to override agent safety filters or bypass system instructions. - Data Exposure & Exfiltration (SAFE): The skill does not access sensitive local files, environment variables, or hardcoded credentials. It does not perform any network requests.
- Obfuscation (SAFE): All content is in clear text. No Base64, zero-width characters, or encoded strings were found.
- Unverifiable Dependencies & Remote Code Execution (SAFE): The skill does not download or install any external packages. While it describes how Read the Docs installs dependencies (via
requirements.txt), the skill itself does not execute these commands. - Privilege Escalation (SAFE): No commands related to administrative privileges (e.g., sudo, chmod) are present.
- Persistence Mechanisms (SAFE): The skill does not attempt to modify shell profiles or system services to maintain access.
- Indirect Prompt Injection (SAFE): The skill has a low attack surface. It processes user input to define configuration paths but does not fetch untrusted external data from the web or execute instructions embedded in data files.
Audit Metadata