brand-storytelling
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- Prompt Injection (SAFE): The skill uses standard instructional language to guide the AI's persona. No override commands, jailbreak attempts, or system prompt extraction patterns were detected.
- Data Exposure & Exfiltration (SAFE): There are no hardcoded credentials, sensitive file paths, or network operations (like curl or fetch) in the content.
- Obfuscation (SAFE): The text is plain markdown with no hidden characters, Base64 encoding, or homoglyphs.
- Unverifiable Dependencies & Remote Code Execution (SAFE): The skill does not include any scripts, package manifests, or remote download commands. It is entirely non-executable.
- Indirect Prompt Injection (SAFE): While the skill processes user input to craft stories, it has no dangerous capabilities (like file writing or network access) that could be exploited through malicious user data. The interaction surface is limited to text generation.
Audit Metadata