fortify
Pass
Audited by Gen Agent Trust Hub on Apr 27, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues were detected. The skill content is purely instructional and follows safe software engineering principles.
- [PROMPT_INJECTION]: The instructions do not attempt to bypass agent safety filters or override core behavioral guidelines.
- [DATA_EXFILTRATION]: There are no commands for network communication or access to sensitive local files such as credentials or configuration files.
- [REMOTE_CODE_EXECUTION]: The skill does not include any executable code, shell scripts, or commands that download and run external content.
- [COMMAND_EXECUTION]: No dangerous system commands or privilege escalation attempts were found.
- [SAFE]: Indirect injection analysis (Category 8): 1. Ingestion points: Processes workflow context and target area inputs (SKILL.md). 2. Boundary markers: Directs the agent to consult 'guardrails-safety reference'. 3. Capability inventory: No dangerous capabilities (subprocesses, network, file writes) identified. 4. Sanitization: Mandates input validation and clear error reporting.
Audit Metadata