security-requirement-extraction
Pass
Audited by Gen Agent Trust Hub on Apr 14, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: No security vulnerabilities were found in the skill's logic or documentation. The resource files contain standard Python data structures and mapping logic for security modeling.
- [PROMPT_INJECTION]: The skill processes untrusted threat model data, creating a surface for indirect prompt injection. However, this is evaluated as safe because the skill does not possess any capabilities (e.g., shell access, network requests, or file writes) that could be leveraged by an attacker.
Audit Metadata