code-refactoring-context-restore
Pass
Audited by Gen Agent Trust Hub on Apr 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is primarily instructional, offering guidelines and code snippets for context restoration. No evidence of prompt injection, data exfiltration, or unauthorized command execution was found.
- [SAFE]: Indirect Prompt Injection surface analysis (Category 8): (1) Ingestion points: The skill describes reading from external sources such as vector databases and file systems via the context_source parameter. (2) Boundary markers: No specific delimiters or instruction-bypass warnings are defined in the conceptual code. (3) Capability inventory: The implementation patterns include functions for searching vector databases (VectorDatabase.search) and loading components (load_component), which represent standard retrieval operations. (4) Sanitization: The skill does not explicitly mention sanitization of retrieved data, which is a common characteristic of such high-level documentation.
Audit Metadata