business-logic-security-audit
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill functions as a professional security analysis persona. Its instructions are focused on identifying legitimate logical flaws such as race conditions, state machine bypasses, and authorization leaks.
- [COMMAND_EXECUTION]: The skill uses standard system commands (
open,xdg-open,start) to facilitate the opening of generated HTML audit reports for the user's convenience. This behavior is transparent and tied to its reporting phase. - [PROMPT_INJECTION]: There are no detected patterns of prompt injection, safety filter bypasses, or instructions to override the agent's core safety guidelines. The skill maintains a consistent security analyst role.
- [DATA_EXPOSURE]: While the skill processes codebases, it stores the results locally in a project-specific directory (
business-logic-audit/). It does not contain any network operations or patterns that would transmit sensitive data to external servers.
Audit Metadata