claude-code-development
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): No evidence of instructions attempting to bypass safety filters or override system prompts.
- Data Exposure & Exfiltration (SAFE): No hardcoded credentials or sensitive file paths detected. External links point to official Claude documentation domains.
- Obfuscation (SAFE): No hidden or encoded content found.
- Unverifiable Dependencies & Remote Code Execution (SAFE): No external package installations or remote script executions detected. The skill provides static documentation and examples.
- Indirect Prompt Injection (LOW): The skill suggests using the
WebFetchtool to retrieve documentation, which is a standard operational surface for processing external content. No specific vulnerability was found. - Dynamic Execution (SAFE): No runtime code generation or unsafe deserialization patterns were identified.
Audit Metadata