principal-data-engineer
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [SAFE] (SAFE): Extensive review of the skill's markdown files and Python script revealed no malicious intent, obfuscation, or unauthorized data access patterns.
- [COMMAND_EXECUTION] (INFO): The included script 'validate_dag_integrity.py' performs static analysis on local files. While it reads file content, it uses the 'ast' module for parsing, which is safe and does not execute the code.
- [INDIRECT_PROMPT_INJECTION] (INFO): The skill provides a surface for indirect injection by analyzing user-provided DAGs. Evidence: (1) Ingestion: User-supplied .py files; (2) Boundaries: None; (3) Capability: Local file read/parse; (4) Sanitization: Safe AST parsing. The risk is negligible as the tool is for static analysis.
Audit Metadata