quant-analyst
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): The instructions use standard role-play techniques to define a quantitative analyst persona. There are no attempts to bypass safety filters, ignore previous instructions, or extract system prompts.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, sensitive file paths (e.g., ~/.ssh, .env), or unauthorized network operations (e.g., curl, wget to unknown domains) were detected.
- [Remote Code Execution] (SAFE): There are no patterns of remote code execution or installation of untrusted third-party packages. The skill relies on well-known libraries like pandas and numpy.
- [Indirect Prompt Injection] (SAFE): While the skill mentions market data ingestion, it does not provide code for this task that could be exploited.
- Ingestion points: Market data ingestion (SKILL.md).
- Boundary markers: Not explicitly defined, but market data is generally structured.
- Capability inventory: No subprocess calls, exec/eval, or file-write operations are defined in the skill body.
- Sanitization: The instructions explicitly mention 'clean and validate all inputs' as a first step.
- [Persistence & Privilege Escalation] (SAFE): No commands related to persistence (e.g., crontab) or privilege escalation (e.g., sudo) are present.
Audit Metadata