humanize
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFENO_CODEPROMPT_INJECTION
Full Analysis
- [NO_CODE] (SAFE): The skill is composed strictly of markdown documentation and instructional logic. It does not include any Python, JavaScript, shell scripts, or binary files, which inherently limits its technical attack surface.
- [PROMPT_INJECTION] (LOW): The skill identifies a surface for indirect prompt injection (Category 8) due to its primary function of processing external documentation. Evidence: 1. Ingestion points: The skill ingest markdown files for transformation as specified in the input section of SKILL.md. 2. Boundary markers: The instructions do not specify the use of clear delimiters or instructions to the agent to ignore potentially malicious content within the documentation being humanized. 3. Capability inventory: The skill's operations are limited to natural language rewriting; it does not possess capabilities for command execution, filesystem access, or network operations. 4. Sanitization: There are no defined sanitization or filtering steps for the untrusted text input prior to processing.
Audit Metadata