risk-metrics-calculation
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides standard Python implementations for financial risk modeling using well-known libraries like NumPy, Pandas, and SciPy. No suspicious patterns, such as obfuscation or hidden instructions, were detected.
- [DATA_EXPOSURE]: No hardcoded credentials, sensitive file paths, or network exfiltration patterns were found. The code operates strictly on provided numerical data.
- [COMMAND_EXECUTION]: The skill does not perform any system-level command execution or subprocess spawning.
- [REMOTE_CODE_EXECUTION]: There are no remote code downloads or dynamic execution patterns. All logic is contained within the provided scripts.
- [INDIRECT_PROMPT_INJECTION]: The skill processes external financial data (returns and weights) through its Python classes. While it lacks explicit input validation for these data structures, the processing is limited to mathematical operations with no high-risk capabilities like network access or file writing, effectively neutralizing the risk of injection through data.
Audit Metadata