agent-topology-optimizer
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists of transparent algorithmic logic for performance optimization. It includes implementations for topology analysis, latency reduction, and agent placement strategies that are consistent with its stated purpose.
- [EXTERNAL_DOWNLOADS]: The skill references the 'claude-flow' package via npx for its operational commands. In the context of this skill's ecosystem, this is an expected framework dependency for swarm management.
- [COMMAND_EXECUTION]: Operational tasks are performed through a series of 'npx' commands designed to interact with the swarm infrastructure. These commands are well-defined and serve the primary optimization goal.
- [PROMPT_INJECTION]: The skill ingests untrusted external data (workload profiles, constraints, and historical data) to drive optimization decisions, presenting an indirect prompt injection surface. \n- Ingestion points: Input files provided to commands (e.g., workload-profile, constraints) and historical communication logs. \n- Boundary markers: No explicit delimiters or instructions to ignore embedded commands are present in the provided snippets. \n- Capability inventory: The skill can execute CLI commands via npx and interact with various MCP tools including swarm status, performance reporting, and neural network predictions. \n- Sanitization: No explicit validation or sanitization logic for ingested data content was detected.
Audit Metadata