brand-asset
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- Prompt Injection (SAFE): No malicious instructions, bypass markers, or system prompt extraction attempts were detected.
- Remote Code Execution (SAFE): The skill is composed entirely of markdown and does not contain any executable scripts, package installations, or remote script execution patterns.
- Data Exposure & Exfiltration (SAFE): No hardcoded credentials, sensitive file paths, or network communication patterns were identified.
- Indirect Prompt Injection (SAFE): While the skill accepts user input through placeholders in prompt templates, it lacks any functional capabilities (such as code execution, file writing, or network requests) that could be exploited through this surface. Ingestion points: [brand name], [style], [color palette], [mood], [brand], [subject], and [texture type] placeholders in SKILL.md; Boundary markers: None; Capability inventory: No tools, scripts, or network capabilities present; Sanitization: None.
Audit Metadata