stan-development
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Dynamic Execution (LOW): The skill demonstrates the use of cmdstanr to compile Stan code into C++ executables. While this involves runtime compilation (Category 10), it is the primary intended function of the Stan language interface.
- Indirect Prompt Injection (LOW): The skill provides patterns for reading and processing external .stan files, creating a surface for untrusted data ingestion (Category 8). 1. Ingestion points: Loading model files via cmdstan_model(). 2. Boundary markers: Not explicitly defined in snippets. 3. Capability inventory: Compilation and execution of C++ code via the Stan toolchain. 4. Sanitization: Relies on the Stan compiler's internal validation.
Audit Metadata