api-documenter
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): No direct override or bypass instructions detected.
- Data Exposure & Exfiltration (SAFE): No hardcoded credentials or sensitive file access patterns found.
- Remote Code Execution (SAFE): No commands for downloading or executing external scripts.
- Indirect Prompt Injection (LOW): As a documentation tool, it may ingest untrusted API code or specifications. While this represents a theoretical attack surface, the skill lacks the system capabilities (file writing, network access) to execute malicious instructions if they were present in the input data.
Audit Metadata